| Bug ID |
10417
|
| Summary |
Misparsed NTP control assignments with empty values
|
| Product |
Wireshark
|
| Version |
1.12.0
|
| Hardware |
All
|
| OS |
All
|
| Status |
UNCONFIRMED
|
| Severity |
Minor
|
| Priority |
Low
|
| Component |
Dissection engine (libwireshark)
|
| Assignee |
[email protected]
|
| Reporter |
[email protected]
|
Created attachment 13017 [details]
Screen shot of parsed packet
Build Information:
Version 1.12.0 (v1.12.0-0-g4fab41a from master-1.12)
Copyright 1998-2014 Gerald Combs <[email protected]> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Compiled (64-bit) with GTK+ 2.24.23, with Cairo 1.10.2, with Pango 1.34.0, with
GLib 2.38.0, with WinPcap (4_1_3), with libz 1.2.5, with SMI 0.4.8, with c-ares
1.9.1, with Lua 5.2, without Python, with GnuTLS 3.1.22, with Gcrypt 1.6.0,
without Kerberos, with GeoIP, with PortAudio V19-devel (built Jul 31 2014),
with
AirPcap.
Running on 64-bit Windows Server 2008R2 Service Pack 1, build 7601, with
WinPcap version 4.1.3 (packet.dll version 4.1.0.2980), based on libpcap version
1.0 branch 1_0_rel0b (20091008), GnuTLS 3.1.22, Gcrypt 1.6.0, without AirPcap.
Intel(R) Xeon(R) CPU E6540 @ 2.00GHz, with 8191MB of physical
memory.
Built using Microsoft Visual C++ 10.0 build 40219
--
The NTP parser for control messages does not seem to properly process
assignments with empty values, such as:
leap=0, stratum=2,
precision=-20, rootdelay=, rootdisp=,
In this example, "rootdelay" is not interpreted as having no value but
Wireshark instead reports the value as ", rootdisp" and the rest of the
key/value pair is not parsed at all.
(The actual UDP payload is attached)
You are receiving this mail because:
- You are watching all bug changes.