ANNOUNCEMENT: Live Wireshark University & Allegro Packets online APAC Wireshark Training Session
July 17th, 2024 | 10:00am-11:55am SGT (UTC+8) | Online
Wireshark logo

Wireshark-bugs: [Wireshark-bugs] [Bug 10080] New: Buildbot crash output: fuzz-2014-05-06-30683.p

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Tue, 06 May 2014 16:10:02 +0000
Bug ID 10080
Summary Buildbot crash output: fuzz-2014-05-06-30683.pcap
Classification Unclassified
Product Wireshark
Version unspecified
Hardware x86-64
URL http://www.wireshark.org/download/automated/captures/fuzz-2014-05-06-30683.pcap
OS Ubuntu
Status CONFIRMED
Severity Major
Priority High
Component Dissection engine (libwireshark)
Assignee [email protected]
Reporter [email protected] 

Problems have been found with the following capture file:

http://www.wireshark.org/download/automated/captures/fuzz-2014-05-06-30683.pcap

stderr:
Input file: /home/wireshark/menagerie/menagerie/12721-SNAP_MGMT.pcapng

Build host information:
Linux wsbb04 3.2.0-61-generic #92-Ubuntu SMP Mon Mar 31 23:47:59 UTC 2014
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 12.04.4 LTS
Release:    12.04
Codename:    precise

Buildbot information:
BUILDBOT_REPOSITORY=ssh://[email protected]:29418/wireshark
BUILDBOT_BUILDNUMBER=2741
BUILDBOT_URL=http://buildbot.wireshark.org/trunk/
BUILDBOT_BUILDERNAME=Clang Code Analysis
BUILDBOT_SLAVENAME=clang-code-analysis
BUILDBOT_GOT_REVISION=4e82d2e34fd9ff7c036a0a652163cbcd37b3363b

Return value:  139

Dissector bug:  0

Valgrind error count:  0



Git commit
commit 4e82d2e34fd9ff7c036a0a652163cbcd37b3363b
Author: Peter Wu <[email protected]>
Date:   Tue May 6 15:45:41 2014 +0200

    sigcomp: Add buffer check to STATE-ACCESS

    Two conditions were not checked, state_length == 0 && state_begin != 0
    and the boundaries of the state buffer. The former is not a big deal,
    but the second issue causes a buffer overrun (detected by ASAN).

    The buffer size is supposed to be stored in the state buffer, that was
    not the case for the initial two SIP SDP and Presence state buffers.
    Fix a typo for presence_buf zero-ing while at it.

    Bug: 9601
    Change-Id: I41dde83185da60b670cca010ecc7b2a2aaaedeb9
    Reviewed-on: https://code.wireshark.org/review/1529
    Reviewed-by: Anders Broman <[email protected]>


Command and args:
/home/wireshark/builders/trunk-clang-ca/clangcodeanalysis/install/bin/tshark
-nVxr


[ no debug trace ]

You are receiving this mail because:
  • You are watching all bug changes.
Wireshark logo footer

© Wireshark Foundation · Privacy Policy

Facebook·Mastodon·Twitter·YouTube