Asterisk
  1. Asterisk
  2. ASTERISK-27658

WebSocket frames with 0 sized payload causes DoS

    Details

      Description

      In ast_websocket_read() we don't adequately check that payload_len is > 0 before calling ws_safe_read(). Calling ws_safe_read with a len argument of 0 will result in a busy loop until the underlying socket is closed.

      1. AST-2018-006.pdf
        34 kB
        Benjamin Keith Ford
      No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

        Hide
        Benjamin Keith Ford added a comment -

        Added advisory for review.

        Show
        Benjamin Keith Ford added a comment - Added advisory for review.
        Hide
        Sean Bright added a comment -

        Advisory looks fine to me

        Show
        Sean Bright added a comment - Advisory looks fine to me
        Hide
        Friendly Automation added a comment -

        Change 8362 merged by Kevin Harwell:
        AST-2018-006: Properly handle WebSocket frames with 0 length payload.

        https://gerrit.asterisk.org/8362

        Show
        Friendly Automation added a comment - Change 8362 merged by Kevin Harwell: AST-2018-006: Properly handle WebSocket frames with 0 length payload. https://gerrit.asterisk.org/8362
        Hide
        Friendly Automation added a comment -

        Change 8363 merged by Kevin Harwell:
        AST-2018-006: Properly handle WebSocket frames with 0 length payload.

        https://gerrit.asterisk.org/8363

        Show
        Friendly Automation added a comment - Change 8363 merged by Kevin Harwell: AST-2018-006: Properly handle WebSocket frames with 0 length payload. https://gerrit.asterisk.org/8363
        Hide
        Friendly Automation added a comment -

        Change 8361 merged by Kevin Harwell:
        AST-2018-006: Properly handle WebSocket frames with 0 length payload.

        https://gerrit.asterisk.org/8361

        Show
        Friendly Automation added a comment - Change 8361 merged by Kevin Harwell: AST-2018-006: Properly handle WebSocket frames with 0 length payload. https://gerrit.asterisk.org/8361

          People

          • Watchers:
            5 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: