ASTERISK-26107: chan_sip: ASAN: heap-buffer-overflow on sip reload

[Home]

Summary: ASTERISK-26107: chan_sip: ASAN: heap-buffer-overflow on sip reload

Reporter: Badalian Vyacheslav (slavon) Labels:

Date Opened: 2016-06-10 08:22:51 Date Closed: 2016-10-30 13:41:07

Priority: Minor Regression?

Status: Closed/Complete Components: Channels/chan_sip/General

Versions: 13.9.1 Frequency of
Occurrence

Related
Issues:
is related to ASTERISK-26073 chan_sip: Crash when cleaning up pruned peers

Environment: Attachments:

Description: {code}
=================================================================
==30286==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x619001136655 at pc 0x7fa3fbec7bd7 bp 0x7fa3f6336160 sp 0x7fa3f6336150
READ of size 1 at 0x619001136655 thread T432
#0 0x7fa3fbec7bd6 in peer_markall_func /root/asterisk-13.9.1/channels/chan_sip.c:31749
#1 0x494dc4 in internal_ao2_traverse /root/asterisk-13.9.1/main/astobj2_container.c:351
#2 0x4951c8 in __ao2_callback /root/asterisk-13.9.1/main/astobj2_container.c:452
#3 0x7fa3fbec9232 in reload_config /root/asterisk-13.9.1/channels/chan_sip.c:31924
#4 0x7fa3fbed8080 in sip_do_reload /root/asterisk-13.9.1/channels/chan_sip.c:33692
#5 0x7fa3fbe9f749 in do_monitor /root/asterisk-13.9.1/channels/chan_sip.c:29410
#6 0x7e58b5 in dummy_start /root/asterisk-13.9.1/main/utils.c:1235
#7 0x7fa430179dc4 in start_thread (/lib64/libpthread.so.0+0x7dc4)
#8 0x7fa42f45928c in clone (/lib64/libc.so.6+0xf628c)
{code}

Comments: By: Asterisk Team (asteriskteam) 2016-06-10 08:22:51.741-0500

Thanks for creating a report! The issue has entered the triage process. That means the issue will wait in this status until a Bug Marshal has an opportunity to review the issue. Once the issue has been reviewed you will receive comments regarding the next steps towards resolution.

A good first step is for you to review the [Asterisk Issue Guidelines|https://wiki.asterisk.org/wiki/display/AST/Asterisk+Issue+Guidelines] if you haven't already. The guidelines detail what is expected from an Asterisk issue report.

Then, if you are submitting a patch, please review the [Patch Contribution Process|https://wiki.asterisk.org/wiki/display/AST/Patch+Contribution+Process].