ANNOUNCEMENT: Live Wireshark University & Allegro Packets online APAC Wireshark Training Session
April 17th, 2024 | 14:30-16:00 SGT (UTC+8) | Online
Wireshark logo

Wireshark-bugs: [Wireshark-bugs] [Bug 7251] New: Wireshark crash: Gtk-ERROR **: Byte index XX is

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Fri, 11 May 2012 21:24:25 -0700 (PDT)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7251

           Summary: Wireshark crash: Gtk-ERROR **: Byte index XX is off
                    the end of the line
           Product: Wireshark
           Version: SVN
          Platform: x86
        OS/Version: All
            Status: NEW
          Severity: Major
          Priority: Low
         Component: Wireshark
        AssignedTo: bugzilla-admin@xxxxxxxxxxxxx
        ReportedBy: jyoung@xxxxxxx


Created attachment 8419
  --> https://bugs.wireshark.org/bugzilla/attachment.cgi?id=8419
Malformed EAP-TLS trace

Build Information:
wireshark 1.7.2-SVN-42554 (SVN Rev 42554 from /trunk)

Copyright 1998-2012 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (64-bit) with GTK+ 2.24.5, with Cairo 1.8.6, with Pango 1.29.3, with
GLib 2.29.8, with libpcap, with libz 1.2.3, without POSIX capabilities, with
SMI
0.4.8, without c-ares, without ADNS, with Lua 5.1, without Python, with GnuTLS
2.12.7, with Gcrypt 1.4.6, with MIT Kerberos, with GeoIP, with PortAudio
V19-devel (built Sep 30 2011 11:17:29), with AirPcap.

Running on Mac OS 10.6.8 (Darwin 10.8.0), with locale .UTF-8, with libpcap
version 1.0.0, with libz 1.2.3, GnuTLS 2.12.7, Gcrypt 1.4.6, without AirPcap.

Built using gcc 4.2.1 (Apple Inc. build 5666) (dot 3).

--
The attached wifi trace file will trigger Wireshark to crash with a GTK message
similar to:

> (wireshark-bin:53858): Gtk-WARNING **: gtktextbtree.c:4019: byte index off the end of the line
> Gtk-ERROR **: Byte index 37 is off the end of the line


To replicate:

1 - Open the attached 8 packet trace file.

2 - In the Packet Details window:

3 - Expand tree: "802.1X Authentication"

4 - Expand tree: "Extensible Authentication Protocol"

5 - Expand tree: "[8 EAP-TLS Fragments ...."

6 - Select item "[Frame 4, payload...." or higher and Wireshark will crash with
the "Byte index XX is off the end of the line" message.

This same issue was replicated on Windows XP system.

Note that the frames in this trace are NOT in fact all related EAP-TLS
fragments.

-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
Wireshark logo footer

© Wireshark Foundation · Privacy Policy

Facebook·Mastodon·Twitter·YouTube