Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 10491] Buildbot crash output: fuzz-2014-09-20-28834.pcap

Wireshark-bugs: [Wireshark-bugs] [Bug 10491] Buildbot crash output: fuzz-2014-09-20-28834.pcap

Date: Sun, 21 Sep 2014 02:41:25 +0000

What	Removed	Added
CC		[email protected], [email protected]

Comment # 1 on bug 10491 from Evan Huus

This looks like tvb_get_ts_23_038_7bits_string is legitimately reading past the
end of the TVB - it's a bug in that function, not in the dissector proper.

I don't see any obvious overflows or underflows, so I'm guessing it's some
subtle logic bug in the tvb function or the getter function, where the length
calculation isn't working out to the right value so the ensure_contiguous call
doesn't check enough data?

Make the ensure_contiguous call check for "length+8" is enough to "fix" it,
though obviously the wrong solution.

You are receiving this mail because:

You are watching all bug changes.

References:
- [Wireshark-bugs] [Bug 10491] New: Buildbot crash output: fuzz-2014-09-20-28834.pcap
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 10491] New: Buildbot crash output: fuzz-2014-09-20-28834.pcap
Next by Date: [Wireshark-bugs] [Bug 7841] New dissector for RFC 6004 - GMPLS Support for Metro Ethernet Forum and G.8011
Previous by thread: [Wireshark-bugs] [Bug 10491] New: Buildbot crash output: fuzz-2014-09-20-28834.pcap
Next by thread: [Wireshark-bugs] [Bug 10491] Buildbot crash output: fuzz-2014-09-20-28834.pcap
Index(es):
- Date
- Thread