Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 8742] New: NetMon (2.0) Overly Big Frame Table Crash

Wireshark-bugs: [Wireshark-bugs] [Bug 8742] New: NetMon (2.0) Overly Big Frame Table Crash

Date: Fri, 31 May 2013 17:29:07 +0000

Bug ID	8742
Summary	NetMon (2.0) Overly Big Frame Table Crash
Classification	Unclassified
Product	Wireshark
Version	SVN
Hardware	x86-64
OS	Ubuntu
Status	UNCONFIRMED
Severity	Minor
Priority	Low
Component	Dissection engine (libwireshark)
Assignee	bugzilla-admin@wireshark.org
Reporter	georgi.geshev@owasp.org

Created attachment 10883 [details]
NetMon Capture File

Build Information:
TShark 1.11.0 (SVN Rev 49652 from /trunk)

Copyright 1998-2013 Gerald Combs <gerald@wireshark.org> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (64-bit) with GLib 2.32.3, with libpcap, with libz 1.2.3.4, with POSIX
capabilities (Linux), without libnl, with SMI 0.4.8, with c-ares 1.7.5, with
Lua
5.1, without Python, with GnuTLS 2.12.14, with Gcrypt 1.5.0, with MIT Kerberos,
with GeoIP.

Running on Linux 3.5.0-25-generic, with locale en_US.UTF-8, with libpcap
version
1.1.1, with libz 1.2.3.4.
      Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz

Built using gcc 4.6.3.

--
$ file 7c51012f016f3e7d168fbf194fa1e932.cap
7c51012f016f3e7d168fbf194fa1e932.cap: NetMon capture file - version 2.0
(Ethernet)
$ gdb -q -batch -ex 'set br pen on' -ex 'br netmon.c:362' -ex 'r -n -r
7c51012f016f3e7d168fbf194fa1e932.cap' -ex 'printf
"\nframe_table_length:\t%u\n", frame_table_length' /usr/local/bin/tshark -ex
'next' -ex 'bt'
No source file named netmon.c.
Breakpoint 1 (netmon.c:362) pending.
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".

Breakpoint 1, netmon_open (wth=0x179c200, err=0x7fffffffe520,
err_info=0x7fffffffdab0) at netmon.c:362
362             frame_table = (guint32 *)g_malloc(frame_table_length);

frame_table_length:     1392509008

(process:31883): GLib-ERROR **: /build/buildd/glib2.0-2.32.3/./glib/gmem.c:165:
failed to allocate 1392509008 bytes

Program received signal SIGTRAP, Trace/breakpoint trap.
0x00007ffff2f0cfdb in g_logv () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#0  0x00007ffff2f0cfdb in g_logv () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#1  0x00007ffff2f0d1b2 in g_log () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#2  0x00007ffff2f0baaf in g_malloc () from
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#3  0x00007ffff7b40920 in netmon_open (wth=0x179c200, err=0x7fffffffe520,
err_info=0x7fffffffdab0) at netmon.c:362
#4  0x00007ffff7b31a5d in wtap_open_offline (filename=0x1798e40
"7c51012f016f3e7d168fbf194fa1e932.cap", err=0x7fffffffe520,
err_info=0x7fffffffdab0, do_random=0) at file_access.c:382
#5  0x000000000041ea7e in cf_open (cf=0x653ce0, fname=0x1798e40
"7c51012f016f3e7d168fbf194fa1e932.cap", is_tempfile=0, err=0x7fffffffe520) at
tshark.c:3699
#6  0x000000000041b707 in main (argc=4, argv=0x7fffffffe658) at tshark.c:1885
$

You are receiving this mail because:

You are watching all bug changes.

Follow-Ups:
- [Wireshark-bugs] [Bug 8742] NetMon (2.0) Overly Big Frame Table Crash
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 8742] NetMon (2.0) Overly Big Frame Table Crash
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 8742] NetMon Overly Big Frame Table Crash
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 8742] NetMon Overly Big Frame Table Crash
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 8742] NetMon Overly Big Frame Table Crash
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 8741] add UDT protocol support
Next by Date: [Wireshark-bugs] [Bug 8742] NetMon (2.0) Overly Big Frame Table Crash
Previous by thread: [Wireshark-bugs] [Bug 5024] feature request: support for "udt" protocol
Next by thread: [Wireshark-bugs] [Bug 8742] NetMon (2.0) Overly Big Frame Table Crash
Index(es):
- Date
- Thread