Inicio Explorar Axuda
Iniciar sesión
Kamailio
/
kamailio
réplica de https://github.com/kamailio/kamailio.git
2
0
Fork 0
Ficheiros Incidencias 0 Wiki
Explorar o código

secfilter: in check sql injection function initialize str variables to NULL. In get values from headers it is checked if From or To name is empty to avoid false positives

Jose Luis Verdeguer %!s(int64=6) %!d(string=hai) anos
pai
6cb53228ff
achega
d309e27b1a
Modificáronse 2 ficheiros con 6 adicións e 6 borrados
Dividir vista Mostrar estatísticas de Diff
  1. 4 4
      src/modules/secfilter/secfilter.c
  2. 2 2
      src/modules/secfilter/secfilter_hdr.c

+ 4 - 4
src/modules/secfilter/secfilter.c
Ver ficheiro 

@@ -131,10 +131,10 @@ PREVENT SQL INJECTION
 
 /* External function to search for illegal characters in several headers */
 
 static int w_check_sqli_all(struct sip_msg *msg)
 
 {
 
-	str ua;
 
-	str name;
 
-	str user;
 
-	str domain;
 
+	str ua = STR_NULL;
 
+	str name = STR_NULL;
 
+	str user = STR_NULL;
 
+	str domain = STR_NULL;
 
 	int res;
 
 	int retval = 1;

+ 2 - 2
src/modules/secfilter/secfilter_hdr.c
Ver ficheiro 

@@ -74,7 +74,7 @@ int secf_get_from(struct sip_msg *msg, str *name, str *user, str *domain)
 
 	}
 
 
 	hdr = get_from(msg);
 
-	if(hdr->display.s != NULL) {
 
+	if(hdr->display.s != NULL && hdr->display.len > 0) {
 
 		name->s = hdr->display.s;
 
 		name->len = hdr->display.len;
 
 
@@ -128,7 +128,7 @@ int secf_get_to(struct sip_msg *msg, str *name, str *user, str *domain)
 
 	}
 
 
 	hdr = get_to(msg);
 
-	if(hdr->display.s != NULL) {
 
+	if(hdr->display.s != NULL && hdr->display.len > 0) {
 
 		name->s = hdr->display.s;
 
 		name->len = hdr->display.len;