[Pkg-voip-commits] r1827 - in iaxmodem/trunk/debian: . patches

Julien Blache jblache at costa.debian.org
Mon Jun 12 08:53:06 UTC 2006 

Author: jblache
Date: 2006-06-12 08:53:05 +0000 (Mon, 12 Jun 2006)
New Revision: 1827

Added:
   iaxmodem/trunk/debian/patches/11_iax2_CORE-2006-0327.dpatch
Modified:
   iaxmodem/trunk/debian/changelog
   iaxmodem/trunk/debian/patches/00list
Log:
Add fix for CORE-2006-0327


Modified: iaxmodem/trunk/debian/changelog
===================================================================
--- iaxmodem/trunk/debian/changelog	2006-06-12 00:28:21 UTC (rev 1826)
+++ iaxmodem/trunk/debian/changelog	2006-06-12 08:53:05 UTC (rev 1827)
@@ -1,8 +1,10 @@
-iaxmodem (0.1.8.dfsg-2) UNRELEASED; urgency=low
+iaxmodem (0.1.8.dfsg-2) unstable; urgency=low
 
-  * NOT RELEASED YET
+  * debian/patches/11_iax2_CORE-2006-0327.dpatch:
+    + Added; Fix IAXclient truncated frames vulnerabilities; see CORE-2006-0327
+      (stollen from iaxclient).
 
- -- Julien BLACHE <jblache at debian.org>  Sat,  3 Jun 2006 16:23:56 +0200
+ -- Julien BLACHE <jblache at debian.org>  Mon, 12 Jun 2006 10:52:16 +0200
 
 iaxmodem (0.1.8.dfsg-1) unstable; urgency=low
 

Modified: iaxmodem/trunk/debian/patches/00list
===================================================================
--- iaxmodem/trunk/debian/patches/00list	2006-06-12 00:28:21 UTC (rev 1826)
+++ iaxmodem/trunk/debian/patches/00list	2006-06-12 08:53:05 UTC (rev 1827)
@@ -1,2 +1,3 @@
 10_replacement_spandsp_mmx_h
+11_iax2_CORE-2006-0327
 

Added: iaxmodem/trunk/debian/patches/11_iax2_CORE-2006-0327.dpatch
===================================================================
--- iaxmodem/trunk/debian/patches/11_iax2_CORE-2006-0327.dpatch	2006-06-12 00:28:21 UTC (rev 1826)
+++ iaxmodem/trunk/debian/patches/11_iax2_CORE-2006-0327.dpatch	2006-06-12 08:53:05 UTC (rev 1827)
@@ -0,0 +1,27 @@
+#! /bin/sh /usr/share/dpatch/dpatch-run
+## 11_iax2_CORE-2006-0327.dpatch by  <jblache at debian.org>
+##
+## All lines beginning with `## DP:' are a description of the patch.
+## DP: Fix IAXclient truncated frames vulnerabilities; see CORE-2006-0327
+## DP: Stollen from iaxclient.
+
+ at DPATCH@
+diff -urNad iaxmodem-0.1.8.dfsg~/lib/libiax2/src/iax.c iaxmodem-0.1.8.dfsg/lib/libiax2/src/iax.c
+--- iaxmodem-0.1.8.dfsg~/lib/libiax2/src/iax.c	2006-06-03 01:10:55.000000000 +0200
++++ iaxmodem-0.1.8.dfsg/lib/libiax2/src/iax.c	2006-06-12 10:49:09.342918339 +0200
+@@ -2920,6 +2920,7 @@
+ 		if (len < sizeof(struct ast_iax2_full_hdr)) {
+ 			DEBU(G "Short header received from %s\n", inet_ntoa(sin->sin_addr));
+ 			IAXERROR "Short header received from %s\n", inet_ntoa(sin->sin_addr));
++			return NULL;
+ 		}
+ 		/* We have a full header, process appropriately */
+ 		session = iax_find_session(sin, ntohs(fh->scallno) & ~IAX_FLAG_FULL, ntohs(fh->dcallno) & ~IAX_FLAG_RETRANS, 1);
+@@ -2933,6 +2934,7 @@
+ 		if (len < sizeof(struct ast_iax2_mini_hdr)) {
+ 			DEBU(G "Short header received from %s\n", inet_ntoa(sin->sin_addr));
+ 			IAXERROR "Short header received from %s\n", inet_ntoa(sin->sin_addr));
++			return NULL;
+ 		}
+ 		/* Miniature, voice frame */
+ 		session = iax_find_session(sin, ntohs(fh->scallno), 0, 0);


Property changes on: iaxmodem/trunk/debian/patches/11_iax2_CORE-2006-0327.dpatch
___________________________________________________________________
Name: svn:executable
   + *

More information about the Pkg-voip-commits mailing list