Wireshark · Ethereal-dev: [Ethereal-dev] overflow in ftype-string.c

Ethereal-dev: [Ethereal-dev] overflow in ftype-string.c

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Pekka Pietikainen <pp@xxxxxxxxxx>

Date: Thu, 3 Feb 2005 14:24:43 +0200

Hiya. 

I recently noticed (well, recent gcc/glibc pointed it out by
making tethereal crash when processing a certain packet :-) ) that 
there's a problem in string_to_repr, it does a sprintf(hex,"%02x",val), but 
doesn't reserve the space for the terminating null. The following 
fixes the issue:

--- ethereal-0.10.9/epan/ftypes/ftype-string.c~	2005-02-03 13:40:43.000000000 +0200
+++ ethereal-0.10.9/epan/ftypes/ftype-string.c	2005-02-03 13:40:43.000000000 +0200
@@ -105,7 +105,7 @@
 {
 	gchar *p, c;
 	char *bufp;
-	char hex[2];
+	char hex[3];
 
 	if (rtype == FTREPR_DFILTER) {
 		bufp = buf;

Follow-Ups:
- Re: [Ethereal-dev] overflow in ftype-string.c
  - From: Gilbert Ramirez

Prev by Date: Re: [Ethereal-dev] buildbot failure in Solaris 8 (SPARC)
Next by Date: [Ethereal-dev] Patch to packet-acse.c
Previous by thread: RE: [Ethereal-dev] Patches
Next by thread: Re: [Ethereal-dev] overflow in ftype-string.c
Index(es):
- Date
- Thread

Riverbed Cascade Pilot: Take Wireshark to the Next Level - Advanced Triggers and Alerts; Web and VoIP Analytics; Long-Term Trending and Forensics; Deep Packet Analysis with Wireshark

Riverbed Cascade Pilot Personal Edition: Take Wireshark to the Next Level - Advanced Triggers and Alerts; Web and VoIP Analytics; Long-Term Trending and Forensics; Deep Packet Analysis with Wireshark

Riverbed AirPcap: Complete Visibility of Your Wireless Networks; Multi-Channel, Aggregated Analysis; Portable and Versatile; Easy to Setup and Easy to Use; Ready to Power Your Application

$Riverbed TurboCap: Full-Speed GbE Capture; Port Aggregation; Pass-thru Mode; Aggregating Tap; Full-Speed GbE Injection; Exported Interfaces; TurboCap API Developer\'s Pack$