Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 6138] Buildbot crash output: randpkt-2011-07-19-27162.pcap

Wireshark-bugs: [Wireshark-bugs] [Bug 6138] Buildbot crash output: randpkt-2011-07-19-27162.pcap

Date: Tue, 19 Jul 2011 09:50:55 -0700 (PDT)

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6138

--- Comment #1 from Chris Maynard <christopher.maynard@xxxxxxxxx> 2011-07-19 09:50:54 PDT ---
Created an attachment (id=6682)
 --> (https://bugs.wireshark.org/bugzilla/attachment.cgi?id=6682)
Frame 2484 contains the offending opensafety packet.

The crash occurs in packet-opensafety.c:unxorFrame() because dataLength=205 is
less than frame1Size=230, so the for() loop attempts to execute 4Billion+
times.

Of note, frameStart2=230 and frameStart1=0.

Hopefully someone familiar with this protocol can apply the correct fix.

-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.

References:
- [Wireshark-bugs] [Bug 6138] New: Buildbot crash output: randpkt-2011-07-19-27162.pcap
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 6139] New: Buildbot crash output: fuzz-2011-07-19-1747.pcap
Next by Date: [Wireshark-bugs] [Bug 6126] 1588-2008 does not decode tlvType in Signaling Message
Previous by thread: [Wireshark-bugs] [Bug 6138] New: Buildbot crash output: randpkt-2011-07-19-27162.pcap
Next by thread: [Wireshark-bugs] [Bug 6138] Buildbot crash output: randpkt-2011-07-19-27162.pcap
Index(es):
- Date
- Thread