Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.

Wireshark-bugs: [Wireshark-bugs] [Bug 5818] buffer overflow occurred while capturing on ethernet

Date: Wed, 27 Apr 2011 19:38:58 -0700 (PDT)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5818

Jeff Morriss <jeff.morriss.ws@xxxxxxxxx> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |jeff.morriss.ws@xxxxxxxxx

--- Comment #3 from Jeff Morriss <jeff.morriss.ws@xxxxxxxxx> 2011-04-27 19:38:55 PDT ---
(In reply to comment #2)
> At startup wireshark prints:
> [Errno 2] Datei oder Verzeichnis nicht gefunden:
> '/usr/lib/wireshark/python/1.4.4/wspy_dissectors'

It seems your build has Python support enabled.  Is this an official Gentoo
build?  The Python support is supposed to be experimental...

Anyway, this problem should be fixed with rev 36923: now we'll deliver the
directory it is now complaining about not existing.

> I can reproduce this bug by starting a capture and waiting a few seconds. Then
> wireshark stops recording packages and prints this to the terminal:
> 
> 
> 18:57:32          Warn Error "Less data was read than was expected" while
> reading: "/tmp/wiresharkXXXXCtkHL3"
> 
> 18:57:33          Warn Error "File contains a record that's not valid" while
> reading: "/tmp/wiresharkXXXXCtkHL3"
> 
> 18:57:34          Warn Error "File contains a record that's not valid" while
> reading: "/tmp/wiresharkXXXXCtkHL3"
> 
> [...] and repeatedly prints them...
> 
> I am running wireshark from a terminal where I am root.
> CAPTURE:
> http://www.2shared.com/file/HzJ09TkF/capturetar.html

The error messages sound like a zlib problem.  You have libz 1.2.5 which I
thought was supposed to be OK.

Which error is the capture file supposed to be related to: the errors above or
the buffer overflow?  I don't get either when loading that capture file.

-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.