]> git.ipfire.org Git - thirdparty/asterisk.git/commit
projects / thirdparty / asterisk.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 424be34) | patch
res_rtp_asterisk.c: Check DTLS packets against ICE candidate list
authorGeorge Joseph <gjoseph@sangoma.com>
Thu, 9 Nov 2023 16:14:03 +0000 (09:14 -0700)
committerasterisk-org-access-app[bot] <120671045+asterisk-org-access-app[bot]@users.noreply.github.com>
Thu, 14 Dec 2023 18:48:17 +0000 (18:48 +0000)
commitd7d7764cb07c8a1872804321302ef93bf62cba05
tree59da46b9c51670caf543ea5bf011d2e91359ef8dtree
parent424be345639d75c6cb7d0bd2da5f0f407dbd0bd5commit | diff
res_rtp_asterisk.c: Check DTLS packets against ICE candidate list

When ICE is in use, we can prevent a possible DOS attack by allowing
DTLS protocol messages (client hello, etc) only from sources that
are in the active remote candidates list.

Resolves: GHSA-hxj9-xwr8-w8pq
res/res_rtp_asterisk.c diff | blob | blame | history
Mirror of https://github.com/asterisk/asterisk.git