[prev in list] [next in list] [prev in thread] [next in thread] 

List:       helix-protocol-dev
Subject:    [Protocol-dev] RE: [Nokia-private-dev] CR: AHAN-7FKDLJ
From:       "Eric Hyche" <ehyche () real ! com>
Date:       2008-10-15 17:22:36
Message-ID: 00ab01c92eea$9f42cd30$ddc86790$ () com
[Download RAW message or body]

Looks good.

=======================================
Eric Hyche (ehyche@real.com)
Principal Engineer
RealNetworks, Inc.


>-----Original Message-----
>From: nokia-private-dev-bounces@helixcommunity.org [mailto:nokia-private-dev-
>bounces@helixcommunity.org] On Behalf Of ext-jesus.1.rodriguez@nokia.com
>Sent: Wednesday, October 15, 2008 11:29 AM
>To: protocol-dev@helixcommunity.org
>Cc: nokia-private-dev@helixcommunity.org
>Subject: [Nokia-private-dev] CR: AHAN-7FKDLJ Vulnerabilities in RTSP
>
>"Nokia submits this code under the terms of a commercial contribution agreement with RealNetworks, and
>I am authorized to contribute this code under said agreement."
>
>Modified by: ext-jesus.1.rodriguez@nokia.com
>Date: 10/15/2008
>Project: symbianMmf_rel
>Bug Number: AHAN-7FKDLJ
>
>Synopsis: Helix crashes when getting a long RTSP error code
>
>Overview:
>Crash occuring in SafeSprintf() when, during an RTSP conversation, the client receives a long error
>code.
>
>Fix:
>When allocating memory to format the debug string, take in account the length of the error code,
>within RTSPResponseMessage::asString().
>
>Files Added: none
>
>Files Modified:
>/protocol/rtsp/rtspmsg.cpp
>
>--- rtsp/rtspmsg.cpp 2 Aug 2005 18:00:42 -0000 1.9
>+++ rtsp/rtspmsg.cpp 10 Oct 2008 15:51:25 -0000
>@@ -590,7 +590,7 @@
> CHXString
> RTSPResponseMessage::asString()
> {
>- int lenTmpBuf = (int)(m_errorMsg.GetLength() + 80);
>+ int lenTmpBuf = (int)(m_errorMsg.GetLength() + m_errorCode.GetLength()
>+ + 80);
>     char* pTmpBuf = new char[lenTmpBuf];
>     SafeSprintf(pTmpBuf, (UINT32)lenTmpBuf, "RTSP/%d.%d %s %s\r\n",
>  majorVersion(), minorVersion(), (const char*)m_errorCode,
>
>Image Size and Heap Use impact: Negligible Module Release testing (STIF, Audio): Passed Test case(s)
>Added: No Memory leak check performed: Passed, no leaks found.
>
>Platforms and Profiles Build Verified:
>helix-client-s60-32-mmf-mdf-arm
>helix-client-s60-50-mmf-mdf-arm
>
>Platforms and Profiles Functionality verified: armv5, winscw
>
>Branch: 210Cayennes, 221Cayennes, Head
>
>Cheers,
>JA


_______________________________________________
Protocol-dev mailing list
Protocol-dev@helixcommunity.org
http://lists.helixcommunity.org/mailman/listinfo/protocol-dev
[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic