git.ipfire.org Git - thirdparty/asterisk.git/commit

author	Automerge script <automerge@asterisk.org>
	Thu, 14 Jun 2012 18:20:02 +0000 (18:20 +0000)
committer	Automerge script <automerge@asterisk.org>
	Thu, 14 Jun 2012 18:20:02 +0000 (18:20 +0000)
commit	e58c3f3441b8bafa4199f1ce481a07bd124a8f6d
tree	e07e5cf2dbd2b4a2e6293fb50bbf4f277af8d62b	tree
parent	1a4c7f29f3f8fbd662ad5a338b1f264d0508ad48	commit \| diff

Merged revisions 368947 via svnmerge from
file:///srv/subversion/repos/asterisk/branches/10

........
  r368947 | mjordan | 2012-06-14 12:31:33 -0500 (Thu, 14 Jun 2012) | 21 lines

  AST-2012-009: Fix crash in chan_skinny due to Key Pad Button Message handling

  AST-2012-008 (r367844) fixed a denial of service attack exploitable in the
  Skinny channel driver that occurred when certain messages are sent after a
  previously registered station sends an Off Hook message.  Unresolved in that
  patch is an issue in the Asterisk 10 releases, wherein, if a Station Key
  Pad Button Message is processed after an Off Hook message, the channel driver
  will inappropriately dereference a NULL pointer.

  This patch fixes those places where the message handling or the channel
  callback functions would attempt to dereference the line's pointer to the
  device.

  (issue ASTERISK-19905)
  Reported by: Christoph Hebeisen
  Tested by: mjordan, Christoph Hebeisen
  Patches:
    AST-2012-009-10.diff uploaded by mjordan (license 6283)
........

git-svn-id: https://origsvn.digium.com/svn/asterisk/branches/10-digiumphones@368960 65c4cc65-6c06-0410-ace0-fbb531ad65f3