[Devel] CVS commitlog: sip-server/modules/sms libsms_getsms.c

Bogdan-Andrei Iancu bogdan at voice-system.ro
Thu Jan 4 16:39:38 CET 2007


User: bogdan_iancu
Date: 2007/01/04 07:39:38 PST

  OpenSER CVS - Commit Details

  Modified files:
    modules/sms          libsms_getsms.c 
  Commit Log:
  - fixed possible buffer overflow when fetching an SMS. See:
      http://www.securityfocus.com/archive/1/455415/30/30/threaded
  
    Not sure if code injection is possible as the maximum overflow is of 5 bytes, guess not long enough to encode some instruction.
    Pointed out by Bastian Friedrich <bastian.friedrich at collax.com>
  
  Revision  Changes    Path
  1.2       +12 -11    sip-server/modules/sms/libsms_getsms.c
   [ http://openser.cvs.sourceforge.net/openser/sip-server/modules/sms/libsms_getsms.c?r1=1.1&r2=1.2 ]



More information about the Devel mailing list