[OpenSIPS-Devel] [OpenSIPS/opensips] aebac0: Fix crash in parse_sdp for fmtp, rtpmap and hold
Răzvan Crainea
noreply at github.com
Thu Oct 14 13:59:34 EST 2021
Branch: refs/heads/master
Home: https://github.com/OpenSIPS/opensips
Commit: aebac095b94607c86c6fe0278bae6e96bf53862e
https://github.com/OpenSIPS/opensips/commit/aebac095b94607c86c6fe0278bae6e96bf53862e
Author: Razvan Crainea <razvan at opensips.org>
Date: 2021-10-14 (Thu, 14 Oct 2021)
Changed paths:
M parser/sdp/sdp_helpr_funcs.c
Log Message:
-----------
Fix crash in parse_sdp for fmtp, rtpmap and hold
When invalid strings would have been passed, the remaining value would
have resulted in an invalid memory access.
Issue discovered during OpenSIPS Security Audit 2021,
by Alfred Farrugia & Sandro Gauci (Enable Security)
More information about the Devel
mailing list