Wireshark-bugs: [Wireshark-bugs] [Bug 9166] New: Buildbot crash output: fuzz-2013-09-19-26339.pc

Date: Thu, 19 Sep 2013 21:30:03 +0000
Bug ID 9166
Summary Buildbot crash output: fuzz-2013-09-19-26339.pcap
Classification Unclassified
Product Wireshark
Version unspecified
Hardware x86-64
URL http://www.wireshark.org/download/automated/captures/fuzz-2013-09-19-26339.pcap
OS Ubuntu
Status CONFIRMED
Severity Major
Priority High
Component Dissection engine (libwireshark)
Assignee [email protected]
Reporter [email protected]

Problems have been found with the following capture file:

http://www.wireshark.org/download/automated/captures/fuzz-2013-09-19-26339.pcap

stderr:
Input file: /home/wireshark/menagerie/menagerie/10616-dhcpv6.pcapng

Build host information:
Linux wsbb04 3.2.0-49-generic #75-Ubuntu SMP Tue Jun 18 17:39:32 UTC 2013
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 12.04.2 LTS
Release:    12.04
Codename:    precise

Buildbot information:
BUILDBOT_REPOSITORY=http://code.wireshark.org/git/wireshark
BUILDBOT_BUILDNUMBER=2100
BUILDBOT_URL=http://buildbot.wireshark.org/trunk/
BUILDBOT_BUILDERNAME=Clang-Code-Analysis
BUILDBOT_SLAVENAME=clang-code-analysis
BUILDBOT_GOT_REVISION=0fb41d119d04da438eac19f83360e5f610bb4049

Return value:  0

Dissector bug:  0

Valgrind error count:  2



Git commit
commit 0fb41d119d04da438eac19f83360e5f610bb4049
Author: Pascal Quantin <[email protected]>
Date:   Tue Sep 17 21:56:35 2013 +0000

    From Jason Wzhy via
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9157 :
    BSSGP: Fix dissection of Trace Type IE in SGSN-INVOKE-TRACE message

    svn path=/trunk/; revision=52131


Command and args: ./tools/valgrind-wireshark.sh 

==7654== Memcheck, a memory error detector
==7654== Copyright (C) 2002-2011, and GNU GPL'd, by Julian Seward et al.
==7654== Using Valgrind-3.7.0 and LibVEX; rerun with -h for copyright info
==7654== Command:
/home/wireshark/builders/trunk-clang-ca/clangcodeanalysis/install/bin/tshark
-nr /fuzz/buildbot/clangcodeanalysis/valgrind-fuzz/fuzz-2013-09-19-26339.pcap
==7654== 
==7654== Conditional jump or move depends on uninitialised value(s)
==7654==    at 0x9496582: g_strv_length (in
/lib/x86_64-linux-gnu/libglib-2.0.so.0.3200.3)
==7654==    by 0x667F56E: dhcpv6_option (packet-dhcpv6.c:1104)
==7654==    by 0x6680025: dissect_dhcpv6 (packet-dhcpv6.c:2091)
==7654==    by 0x667DE15: dhcpv6_option (packet-dhcpv6.c:1659)
==7654==    by 0x6680025: dissect_dhcpv6 (packet-dhcpv6.c:2091)
==7654==    by 0x64727A7: call_dissector_through_handle (packet.c:492)
==7654==    by 0x64730F4: call_dissector_work (packet.c:586)
==7654==    by 0x6473A32: dissector_try_uint_new (packet.c:1017)
==7654==    by 0x6473A86: dissector_try_uint (packet.c:1043)
==7654==    by 0x6B1DFF4: decode_udp_ports (packet-udp.c:339)
==7654==    by 0x6B1E621: dissect (packet-udp.c:661)
==7654==    by 0x64727A7: call_dissector_through_handle (packet.c:492)
==7654== 
==7654== 
==7654== HEAP SUMMARY:
==7654==     in use at exit: 1,097,171 bytes in 24,976 blocks
==7654==   total heap usage: 282,629 allocs, 257,653 frees, 11,094,973 bytes
allocated
==7654== 
==7654== LEAK SUMMARY:
==7654==    definitely lost: 2,881 bytes in 45 blocks
==7654==    indirectly lost: 696 bytes in 7 blocks
==7654==      possibly lost: 0 bytes in 0 blocks
==7654==    still reachable: 1,093,594 bytes in 24,924 blocks
==7654==         suppressed: 0 bytes in 0 blocks
==7654== Rerun with --leak-check=full to see details of leaked memory
==7654== 
==7654== For counts of detected and suppressed errors, rerun with: -v
==7654== Use --track-origins=yes to see where uninitialised values come from
==7654== ERROR SUMMARY: 2 errors from 1 contexts (suppressed: 3 from 3)

[ no debug trace ]


You are receiving this mail because:
  • You are watching all bug changes.