when using webenabled in manager.c a http request that heads over to the manager can (if process_output in manager.c enlarges the string) crash asterisk. The URI contains a patch to resolve this issue. My thanks to russelb and kpfleming that assisted in tracking and fixing the problem. Reproducible: Always
Created attachment 279917 [details, diff] asterisk-1.8.5.0-manager-process_output-segfault.patch Need I say more? I patched my one system manually, but this is a rather critical flaw, and will only go into 1.8.6.0, they won't be releasing a 1.8.5.1 for this ... go figure - DoS situation ...
+*asterisk-1.8.5.0-r1 (13 Jul 2011) + + 13 Jul 2011; Tony Vroon <chainsaw@gentoo.org> -asterisk-1.8.5.0.ebuild, + +asterisk-1.8.5.0-r1.ebuild: + Rediffed & revived backward compatibility patch by Erik Wallin closes bug + #374947. Double-free and resulting segmentation fault reported by Jaco Kroon + and fixed upstream by kpfleming, closes bug #375009. Old ebuild killed as it + is unusable if HTTP is enabled on the management interface.