| Bug ID |
9166
|
| Summary |
Buildbot crash output: fuzz-2013-09-19-26339.pcap
|
| Classification |
Unclassified
|
| Product |
Wireshark
|
| Version |
unspecified
|
| Hardware |
x86-64
|
| URL |
http://www.wireshark.org/download/automated/captures/fuzz-2013-09-19-26339.pcap
|
| OS |
Ubuntu
|
| Status |
CONFIRMED
|
| Severity |
Major
|
| Priority |
High
|
| Component |
Dissection engine (libwireshark)
|
| Assignee |
[email protected]
|
| Reporter |
[email protected]
|
Problems have been found with the following capture file:
http://www.wireshark.org/download/automated/captures/fuzz-2013-09-19-26339.pcap
stderr:
Input file: /home/wireshark/menagerie/menagerie/10616-dhcpv6.pcapng
Build host information:
Linux wsbb04 3.2.0-49-generic #75-Ubuntu SMP Tue Jun 18 17:39:32 UTC 2013
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID: Ubuntu
Description: Ubuntu 12.04.2 LTS
Release: 12.04
Codename: precise
Buildbot information:
BUILDBOT_REPOSITORY=http://code.wireshark.org/git/wireshark
BUILDBOT_BUILDNUMBER=2100
BUILDBOT_URL=http://buildbot.wireshark.org/trunk/
BUILDBOT_BUILDERNAME=Clang-Code-Analysis
BUILDBOT_SLAVENAME=clang-code-analysis
BUILDBOT_GOT_REVISION=0fb41d119d04da438eac19f83360e5f610bb4049
Return value: 0
Dissector bug: 0
Valgrind error count: 2
Git commit
commit 0fb41d119d04da438eac19f83360e5f610bb4049
Author: Pascal Quantin <[email protected]>
Date: Tue Sep 17 21:56:35 2013 +0000
From Jason Wzhy via
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9157 :
BSSGP: Fix dissection of Trace Type IE in SGSN-INVOKE-TRACE message
svn path=/trunk/; revision=52131
Command and args: ./tools/valgrind-wireshark.sh
==7654== Memcheck, a memory error detector
==7654== Copyright (C) 2002-2011, and GNU GPL'd, by Julian Seward et al.
==7654== Using Valgrind-3.7.0 and LibVEX; rerun with -h for copyright info
==7654== Command:
/home/wireshark/builders/trunk-clang-ca/clangcodeanalysis/install/bin/tshark
-nr /fuzz/buildbot/clangcodeanalysis/valgrind-fuzz/fuzz-2013-09-19-26339.pcap
==7654==
==7654== Conditional jump or move depends on uninitialised value(s)
==7654== at 0x9496582: g_strv_length (in
/lib/x86_64-linux-gnu/libglib-2.0.so.0.3200.3)
==7654== by 0x667F56E: dhcpv6_option (packet-dhcpv6.c:1104)
==7654== by 0x6680025: dissect_dhcpv6 (packet-dhcpv6.c:2091)
==7654== by 0x667DE15: dhcpv6_option (packet-dhcpv6.c:1659)
==7654== by 0x6680025: dissect_dhcpv6 (packet-dhcpv6.c:2091)
==7654== by 0x64727A7: call_dissector_through_handle (packet.c:492)
==7654== by 0x64730F4: call_dissector_work (packet.c:586)
==7654== by 0x6473A32: dissector_try_uint_new (packet.c:1017)
==7654== by 0x6473A86: dissector_try_uint (packet.c:1043)
==7654== by 0x6B1DFF4: decode_udp_ports (packet-udp.c:339)
==7654== by 0x6B1E621: dissect (packet-udp.c:661)
==7654== by 0x64727A7: call_dissector_through_handle (packet.c:492)
==7654==
==7654==
==7654== HEAP SUMMARY:
==7654== in use at exit: 1,097,171 bytes in 24,976 blocks
==7654== total heap usage: 282,629 allocs, 257,653 frees, 11,094,973 bytes
allocated
==7654==
==7654== LEAK SUMMARY:
==7654== definitely lost: 2,881 bytes in 45 blocks
==7654== indirectly lost: 696 bytes in 7 blocks
==7654== possibly lost: 0 bytes in 0 blocks
==7654== still reachable: 1,093,594 bytes in 24,924 blocks
==7654== suppressed: 0 bytes in 0 blocks
==7654== Rerun with --leak-check=full to see details of leaked memory
==7654==
==7654== For counts of detected and suppressed errors, rerun with: -v
==7654== Use --track-origins=yes to see where uninitialised values come from
==7654== ERROR SUMMARY: 2 errors from 1 contexts (suppressed: 3 from 3)
[ no debug trace ]
You are receiving this mail because:
- You are watching all bug changes.
