CDR: Protect from data overflow in ast_cdr_setuserfield.
authorCorey Farrell <git@cfware.com>
Mon, 27 Mar 2017 14:03:49 +0000 (10:03 -0400)
committerJoshua Colp <jcolp@digium.com>
Tue, 4 Apr 2017 10:14:26 +0000 (10:14 +0000)
commit380973cc477f0060b7bfe09ad1034a0b53a343fd
tree35f4b44d210004283fe2f5449e52518ef0705103
parenta889621b14a55994fcfe68341af3cef2484ff74b
CDR: Protect from data overflow in ast_cdr_setuserfield.

ast_cdr_setuserfield wrote to a fixed length field using strcpy. This could
result in a buffer overrun when called from chan_sip or func_cdr. This patch
adds a maximum bytes written to the field by using ast_copy_string instead.

ASTERISK-26897 #close
patches:
  0001-CDR-Protect-from-data-overflow-in-ast_cdr_setuserfie.patch submitted
    by Corey Farrell (license #5909)

Change-Id: Ib23ca77e9b9e2803a450e1206af45df2d2fdf65c
main/cdr.c