Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 9243] New: Buildbot crash output: fuzz-2013-10-07-8828.pcap

Wireshark-bugs: [Wireshark-bugs] [Bug 9243] New: Buildbot crash output: fuzz-2013-10-07-8828.pca

Date: Mon, 07 Oct 2013 17:00:03 +0000

Bug ID	9243
Summary	Buildbot crash output: fuzz-2013-10-07-8828.pcap
Classification	Unclassified
Product	Wireshark
Version	unspecified
Hardware	x86-64
URL	http://www.wireshark.org/download/automated/captures/fuzz-2013-10-07-8828.pcap
OS	Ubuntu
Status	CONFIRMED
Severity	Major
Priority	High
Component	Dissection engine (libwireshark)
Assignee	[email protected]
Reporter	[email protected]

Problems have been found with the following capture file:

http://www.wireshark.org/download/automated/captures/fuzz-2013-10-07-8828.pcap

stderr:
Input file: /home/wireshark/menagerie/menagerie/10860-packet-gsm.pcap

Build host information:
Linux wsbb04 3.2.0-49-generic #75-Ubuntu SMP Tue Jun 18 17:39:32 UTC 2013
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 12.04.2 LTS
Release:    12.04
Codename:    precise

Buildbot information:
BUILDBOT_REPOSITORY=
BUILDBOT_BUILDNUMBER=2119
BUILDBOT_URL=http://buildbot.wireshark.org/trunk/
BUILDBOT_BUILDERNAME=Clang-Code-Analysis
BUILDBOT_SLAVENAME=clang-code-analysis
BUILDBOT_GOT_REVISION=7b3ac2ae6bdeac058c02d0d7f6d071f85dc04b91

Return value:  134

Dissector bug:  0

Valgrind error count:  3



Git commit
commit 7b3ac2ae6bdeac058c02d0d7f6d071f85dc04b91
Author: Jörg Mayer <[email protected]>
Date:   Sat Oct 5 10:17:21 2013 +0000

    Attempt to get linking working with cmake - without success so far.

    svn path=/trunk/; revision=52377


Command and args: ./tools/valgrind-wireshark.sh 

==16299== Memcheck, a memory error detector
==16299== Copyright (C) 2002-2011, and GNU GPL'd, by Julian Seward et al.
==16299== Using Valgrind-3.7.0 and LibVEX; rerun with -h for copyright info
==16299== Command:
/home/wireshark/builders/trunk-clang-ca/clangcodeanalysis/install/bin/tshark
-nr /fuzz/buildbot/clangcodeanalysis/valgrind-fuzz/fuzz-2013-10-07-8828.pcap
==16299== 
==16299== Conditional jump or move depends on uninitialised value(s)
==16299==    at 0x678A93C: dissect_cbch (packet-gsm_cbch.c:257)
==16299==    by 0x64850E7: call_dissector_through_handle (packet.c:492)
==16299==    by 0x6485A34: call_dissector_work (packet.c:586)
==16299==    by 0x64878A0: call_dissector_with_data (packet.c:2105)
==16299==    by 0x64850E7: call_dissector_through_handle (packet.c:492)
==16299==    by 0x6485A34: call_dissector_work (packet.c:586)
==16299==    by 0x6486372: dissector_try_uint_new (packet.c:1017)
==16299==    by 0x64863C6: dissector_try_uint (packet.c:1043)
==16299==    by 0x6B38767: decode_udp_ports (packet-udp.c:342)
==16299==    by 0x6B38D71: dissect (packet-udp.c:661)
==16299==    by 0x64850E7: call_dissector_through_handle (packet.c:492)
==16299==    by 0x6485A34: call_dissector_work (packet.c:586)
==16299== 
==16299== Conditional jump or move depends on uninitialised value(s)
==16299==    at 0x678A929: dissect_cbch (packet-gsm_cbch.c:257)
==16299==    by 0x64850E7: call_dissector_through_handle (packet.c:492)
==16299==    by 0x6485A34: call_dissector_work (packet.c:586)
==16299==    by 0x64878A0: call_dissector_with_data (packet.c:2105)
==16299==    by 0x64850E7: call_dissector_through_handle (packet.c:492)
==16299==    by 0x6485A34: call_dissector_work (packet.c:586)
==16299==    by 0x6486372: dissector_try_uint_new (packet.c:1017)
==16299==    by 0x64863C6: dissector_try_uint (packet.c:1043)
==16299==    by 0x6B38767: decode_udp_ports (packet-udp.c:342)
==16299==    by 0x6B38D71: dissect (packet-udp.c:661)
==16299==    by 0x64850E7: call_dissector_through_handle (packet.c:492)
==16299==    by 0x6485A34: call_dissector_work (packet.c:586)
==16299== 
**
ERROR:packet.c:2091:call_dissector_only: assertion failed: (handle != NULL)
==16299== 
==16299== HEAP SUMMARY:
==16299==     in use at exit: 10,580,752 bytes in 284,922 blocks
==16299==   total heap usage: 500,060 allocs, 215,138 frees, 23,598,657 bytes
allocated
==16299== 
==16299== LEAK SUMMARY:
==16299==    definitely lost: 2,280 bytes in 16 blocks
==16299==    indirectly lost: 52,766 bytes in 984 blocks
==16299==      possibly lost: 0 bytes in 0 blocks
==16299==    still reachable: 10,525,706 bytes in 283,922 blocks
==16299==         suppressed: 0 bytes in 0 blocks
==16299== Rerun with --leak-check=full to see details of leaked memory
==16299== 
==16299== For counts of detected and suppressed errors, rerun with: -v
==16299== Use --track-origins=yes to see where uninitialised values come from
==16299== ERROR SUMMARY: 3 errors from 2 contexts (suppressed: 3 from 3)
./tools/valgrind-wireshark.sh: line 107: 16299 Aborted                 (core
dumped) $LIBTOOL valgrind --suppressions=`dirname $0`/vg-suppressions
--tool=$TOOL $VERBOSE $LEAK_CHECK $REACHABLE $TRACK_ORIGINS $COMMAND
$COMMAND_ARGS $PCAP $COMMAND_ARGS2 > /dev/null

[ no debug trace ]

You are receiving this mail because:

You are watching all bug changes.

Follow-Ups:
- [Wireshark-bugs] [Bug 9243] Buildbot crash output: fuzz-2013-10-07-8828.pcap
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 9243] Buildbot crash output: fuzz-2013-10-07-8828.pcap
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 9243] Buildbot crash output: fuzz-2013-10-07-8828.pcap
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 9243] Buildbot crash output: fuzz-2013-10-07-8828.pcap
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 5651] TCP analysis is not performed if options field has been truncated
Next by Date: [Wireshark-bugs] [Bug 9243] Buildbot crash output: fuzz-2013-10-07-8828.pcap
Previous by thread: [Wireshark-bugs] [Bug 5651] TCP analysis is not performed if options field has been truncated
Next by thread: [Wireshark-bugs] [Bug 9243] Buildbot crash output: fuzz-2013-10-07-8828.pcap
Index(es):
- Date
- Thread