LWN.net Logo

Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

freeswitch: code execution
Package(s):freeswitch CVE #(s):CVE-2013-2238
Created:September 19, 2013 Updated:September 25, 2013
Description: From the Mageia advisory:

In FreeSWITCH before 1.2.12, if the routing configuration includes regular expressions that don't constrain the length of the input, buffer overflows are possible. Since these regular expressions are matched against untrusted input, remote code execution may be possible

Alerts:
Mageia MGASA-2013-0279 2013-09-19
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds