openbsc.git branch master updated. 0.13.0-733-g74b2028

This is merely a historical archive of years 2008-2021, before the migration to mailman3.

A maintained and still updated list archive can be found at https://lists.osmocom.org/hyperkitty/list/osmocom-commitlog@lists.osmocom.org/.

gitosis at osmocom.org gitosis at osmocom.org
Mon Nov 10 07:47:54 UTC 2014 

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The OpenBSC GSM Base Station Controller (+MSC/HLR/SGSN)".

The branch, master has been updated
       via  74b2028167ddf04a867ae9f269bfa3435c93f252 (commit)
      from  33f2c4d898c59a05c8122fd9897cbd22f643b367 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
http://cgit.osmocom.org/openbsc/commit/?id=74b2028167ddf04a867ae9f269bfa3435c93f252

commit 74b2028167ddf04a867ae9f269bfa3435c93f252
Author: Jacob Erlbeck <jerlbeck at sysmocom.de>
Date:   Mon Nov 10 08:30:31 2014 +0100

    bsc: Fix use-after-free on OML NM messages from the BTS
    
    Currently the sign_link pointer is dereferenced after a call to
    osmo_signal_dispatch, which can indirectly call
    e1inp_sign_link_destroy. If that happens, accessing *sign_link is
    illegal and can lead to a segmentation violation.
    
    Since only the bts pointer is needed from sign_link after the call to
    osmo_signal_dispatch, this patch changes abis_nm_rcvmsg_fom to save
    that pointer to a local variable earlier.
    
    Addresses:
    <0019> input/ipa.c:250 accept()ed new link from 192.168.1.101 to port 3002
    SET ATTR NACK  CAUSE=Message cannot be performed
    <0005> bsc_init.c:52 Got a NACK going to drop the OML links.
    <001b> bsc_init.c:319 Lost some E1 TEI link: 1 0xb351a830
    =================================================================
    ==13198== ERROR: AddressSanitizer: heap-use-after-free on address 0xb5d1bc70 at pc 0x80a6e3d bp 0xbfbb33d8 sp 0xbfbb33cc
    
    Sponsored-by: On-Waves ehf

-----------------------------------------------------------------------

Summary of changes:
 openbsc/src/libbsc/abis_nm.c | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)


hooks/post-receive
-- 
The OpenBSC GSM Base Station Controller (+MSC/HLR/SGSN)

More information about the osmocom-commitlog mailing list