Wireshark-bugs: [Wireshark-bugs] [Bug 9131] New: Buildbot crash output: fuzz-2013-09-10-3971.pca

Date: Tue, 10 Sep 2013 21:40:06 +0000
Bug ID 9131
Summary Buildbot crash output: fuzz-2013-09-10-3971.pcap
Classification Unclassified
Product Wireshark
Version unspecified
Hardware x86-64
URL http://www.wireshark.org/download/automated/captures/fuzz-2013-09-10-3971.pcap
OS Ubuntu
Status CONFIRMED
Severity Major
Priority High
Component Dissection engine (libwireshark)
Assignee [email protected]
Reporter [email protected]

Problems have been found with the following capture file:

http://www.wireshark.org/download/automated/captures/fuzz-2013-09-10-3971.pcap

stderr:
Input file:
/home/wireshark/menagerie/menagerie/10095-captura_smb2_1302201115_pdf_and_txt.pcapng

Build host information:
Linux wsbb04 3.2.0-49-generic #75-Ubuntu SMP Tue Jun 18 17:39:32 UTC 2013
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 12.04.2 LTS
Release:    12.04
Codename:    precise

Buildbot information:
BUILDBOT_REPOSITORY=http://code.wireshark.org/git/wireshark
BUILDBOT_BUILDNUMBER=2092
BUILDBOT_URL=http://buildbot.wireshark.org/trunk/
BUILDBOT_BUILDERNAME=Clang-Code-Analysis
BUILDBOT_SLAVENAME=clang-code-analysis
BUILDBOT_GOT_REVISION=7d3d67407cd4b57cac6f6253a41ced5215c97207

Return value:  0

Dissector bug:  0

Valgrind error count:  2



Git commit
commit 7d3d67407cd4b57cac6f6253a41ced5215c97207
Author: Stig Bjørlykke <[email protected]>
Date:   Sat Sep 7 11:27:38 2013 +0000

    Added support for a "prefs_change" function in Lua scripts, which is called
    when the preferences for the dissector are changed.

    This is not a 100% correct implementation at the time because the
    prefs_changed function in all Lua plugins will be called whenever
    a preference in a single Lua plugin is changed.

    svn path=/trunk/; revision=51818


Command and args: ./tools/valgrind-wireshark.sh 

==1931== Memcheck, a memory error detector
==1931== Copyright (C) 2002-2011, and GNU GPL'd, by Julian Seward et al.
==1931== Using Valgrind-3.7.0 and LibVEX; rerun with -h for copyright info
==1931== Command:
/home/wireshark/builders/trunk-clang-ca/clangcodeanalysis/install/bin/tshark
-nr /fuzz/buildbot/clangcodeanalysis/valgrind-fuzz/fuzz-2013-09-10-3971.pcap
==1931== 
==1931== Conditional jump or move depends on uninitialised value(s)
==1931==    at 0x6A4D482: get_unicode_or_ascii_string (packet-smb-common.c:240)
==1931==    by 0x6A6DA9F: dissect_get_dfs_request_data (packet-smb.c:10946)
==1931==    by 0x6A7F345: dissect_smb2_ioctl_data (packet-smb2.c:4625)
==1931==    by 0x6A7DE9C: dissect_smb2_ioctl_request (packet-smb2.c:4737)
==1931==    by 0x6A7D000: dissect_smb2 (packet-smb2.c:6637)
==1931==    by 0x6A7D8E7: dissect_smb2_heur (packet-smb2.c:7074)
==1931==    by 0x644E030: dissector_try_heuristic (packet.c:1828)
==1931==    by 0x68E6273: dissect_netbios_payload (packet-netbios.c:1055)
==1931==    by 0x68B2972: dissect_nbss_packet (packet-nbns.c:1612)
==1931==    by 0x68B2B3A: dissect_nbss (packet-nbns.c:1816)
==1931==    by 0x644BFF7: call_dissector_through_handle (packet.c:492)
==1931==    by 0x644C904: call_dissector_work (packet.c:586)
==1931== 
==1931== 
==1931== HEAP SUMMARY:
==1931==     in use at exit: 1,316,343 bytes in 28,817 blocks
==1931==   total heap usage: 331,622 allocs, 302,805 frees, 15,012,684 bytes
allocated
==1931== 
==1931== LEAK SUMMARY:
==1931==    definitely lost: 118,974 bytes in 1,632 blocks
==1931==    indirectly lost: 89,460 bytes in 2,297 blocks
==1931==      possibly lost: 0 bytes in 0 blocks
==1931==    still reachable: 1,107,909 bytes in 24,888 blocks
==1931==         suppressed: 0 bytes in 0 blocks
==1931== Rerun with --leak-check=full to see details of leaked memory
==1931== 
==1931== For counts of detected and suppressed errors, rerun with: -v
==1931== Use --track-origins=yes to see where uninitialised values come from
==1931== ERROR SUMMARY: 2 errors from 1 contexts (suppressed: 3 from 3)

[ no debug trace ]


You are receiving this mail because:
  • You are watching all bug changes.