Marian Ďurkovič
changed
bug 10408
| What |
Removed |
Added |
| Status |
RESOLVED
|
UNCONFIRMED
|
| Resolution |
DUPLICATE
|
---
|
| Ever confirmed |
1
|
|
Comment # 8
on bug 10408
from Marian Ďurkovič
OK, the bug is in file epan/address_to_str.c
For AX25, it uses the following code:
case AT_AX25:
addrdata = (const guint8 *)addr->data;
g_snprintf(buf, buf_len, "%c%c%c%c%c%c-%02d",
(addrdata[0] >> 1) & 0x7f, (addrdata[1] >> 1) & 0x7f,
(addrdata[2] >> 1) & 0x7f,
(addrdata[3] >> 1) & 0x7f, (addrdata[4] >> 1) & 0x7f,
(addrdata[5] >> 1) & 0x7f,
(addrdata[6] >> 1) & 0x0f );
break;
It means control characters 0x00 to 0x1f as well as 0x7f are being printed
directly to terminal without sanitizing - normally they should be replaced by
something safe like . or ?
You are receiving this mail because:
- You are watching all bug changes.