projects / feed / telephony.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e1ce116) | patch
libs/pjproject: security revision bump 172/head
authorSebastian Kemper <sebastian_ml@gmx.net>
Sat, 29 Jul 2017 11:54:21 +0000 (13:54 +0200)
committerSebastian Kemper <sebastian_ml@gmx.net>
Sat, 29 Jul 2017 12:04:00 +0000 (14:04 +0200)
commit7fc4844b718e1ed4dc99ea3893f205ec5d877198
tree273b821a31202d2f6a4da3a01bd78f3dd48826ebtree | snapshot
parente1ce116eea298942078d4210e5fed1be2e2dafdbcommit | diff
libs/pjproject: security revision bump

Add patches provided by Asterisk project for pjproject. This fixes the
following vulnerabilities:

- AST-2017-002: Buffer Overrun in PJSIP transaction layer (CVE-2017-9372)
- AST-2017-003: Crash in PJSIP multi-part body parser

Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>
libs/pjproject/Makefile diff | blob | history
libs/pjproject/patches/130-Parse-zero-length-multipart-body-parts-correctly.patch [new file with mode: 0644] blob
libs/pjproject/patches/140-Ensure-2543-transaction-key-buffer-is-large-enough.patch [new file with mode: 0644] blob
Mirror of telephony feed