Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 8941] Fuzz failure: crash in print_hex_data_buffer()

Wireshark-bugs: [Wireshark-bugs] [Bug 8941] Fuzz failure: crash in print_hex_data_buffer()

Date: Tue, 16 Jul 2013 22:37:42 +0000

What	Removed	Added
CC		[email protected]

Comment # 2 on bug 8941 from Jeff Morriss

Some analysis:

Uh oh, TVB's no good:

~~~
(gdb) print tvb
$1 = (tvbuff_t *) 0x3480800
(gdb) print *tvb
$2 = {
  next = 0x3469370, 
  previous = 0x34804f0, 
  ops = 0x7f253dce96e0 <tvb_real_ops>, 
  initialized = 1, 
  flags = 0, 
  ds_tvb = 0x3480800, 
  real_data = 0x1e2898235 <Address 0x1e2898235 out of bounds>, 
  length = 8, 
  reported_length = 8, 
  raw_offset = -1
}
~~~

We've got 3 data sources, looks like the 2nd one's the problem:

~~~
(gdb) print edt->pi.data_src
$3 = 0x347e620 = {0x3482990, 0x347e630, 0x34829c0}

(gdb) print *((struct data_source *)edt->pi.data_src.data)
$13 = {
  tvb = 0x3485aa0, 
  name = 0x3439be0 "Frame"
}
(gdb) print *((struct data_source *)edt->pi.data_src->next.data)
$14 = {
  tvb = 0x3480800, 
  name = 0x33b4870 "Decrypted data"
}
(gdb) print *((struct data_source *)edt->pi.data_src->next->next.data)
$15 = {
  tvb = 0x34804f0, 
  name = 0x33841b0 "Decrypted NTLMSSP Verifier"
}
~~~

You are receiving this mail because:

You are watching all bug changes.

References:
- [Wireshark-bugs] [Bug 8941] New: Fuzz failure:
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 8940] Fuzz failure in packet-gsm_a_common.c:elem_telv()
Next by Date: [Wireshark-bugs] [Bug 8942] New: Unrecognized preferences and color filters created in proprietary or older versions are discarded when saved
Previous by thread: [Wireshark-bugs] [Bug 8941] Fuzz failure: crash in print_hex_data_buffer()
Next by thread: [Wireshark-bugs] [Bug 8941] Fuzz failure: crash in print_hex_data_buffer()
Index(es):
- Date
- Thread