Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 4369] Buildbot crash output: fuzz-2010-01-04-13072.pcap

Wireshark-bugs: [Wireshark-bugs] [Bug 4369] Buildbot crash output: fuzz-2010-01-04-13072.pcap

Date: Thu, 7 Jan 2010 14:10:48 -0800 (PST)

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4369

Gerasimos Dimitriadis <dimeg@xxxxxxxxxxx> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |dimeg@xxxxxxxxxxx

--- Comment #1 from Gerasimos Dimitriadis <dimeg@xxxxxxxxxxx> 2010-01-07 14:10:47 PST ---
Infinite loop occurred because of the following lines in packet-assa_r3.c:
5549     while (offset < tvb_reported_length (payload_tvb))
5550       offset += dissect_r3_command (payload_tvb, offset, 0, pinfo,
payload_tree);

And dissect_r3_command returns:
5477     return tvb_get_guint8 (tvb, start_offset);

Fixed this one in revision 31463, yet there are many more similar issues in
this decoder. E.g.:
4153  for (i = start_offset; i < l; i += tvb_get_guint8 (tvb, start_offset +
i))
4154    items++;

-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

References:
- [Wireshark-bugs] [Bug 4369] New: Buildbot crash output: fuzz-2010-01-04-13072.pcap
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 4374] New: Windows PortableApps Installer could use the "installer icon"
Next by Date: [Wireshark-bugs] [Bug 4339] [PATCH] VNC dissector cleanups and minor changes
Previous by thread: [Wireshark-bugs] [Bug 4369] New: Buildbot crash output: fuzz-2010-01-04-13072.pcap
Next by thread: [Wireshark-bugs] [Bug 4369] Buildbot crash output: fuzz-2010-01-04-13072.pcap
Index(es):
- Date
- Thread