Bill Meier
changed
bug 10582
| What |
Removed |
Added |
| Priority |
Low
|
Medium
|
Comment # 5
on bug 10582
from Bill Meier
Thanks for the bug report and example capture file.
Upon examining packet-amqp.c, it appears that there are a number of problems in
the dissector which need to be fixed.
E.g., there are (numerous ?) instances in the code wherein a bad 'length' value
from the PDU when used to adjust 'offset' or 'remaining length' results in
undetected overflow (wrapping).
The attached capture exposes one such case which causes a loop of function
calls which eventually exhausts the stack.
Also, further code examination shows other possible bugs which will need to be
reviewed in detail.
In other words, cleaning up the dissector will require some work and will take
a bit of time ....
You are receiving this mail because:
- You are watching all bug changes.