Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 10214] New: ASAN: global-buffer-overflow in _ws_mempbrk

Wireshark-bugs: [Wireshark-bugs] [Bug 10214] New: ASAN: global-buffer-overflow in _ws_mempbrk_ss

Date: Sat, 21 Jun 2014 11:15:05 +0000

Bug ID	10214
Summary	ASAN: global-buffer-overflow in _ws_mempbrk_sse42
Classification	Unclassified
Product	Wireshark
Version	Git
Hardware	x86
OS	All
Status	UNCONFIRMED
Severity	Major
Priority	Low
Component	Common utilities (libwsutil)
Assignee	bugzilla-admin@wireshark.org
Reporter	peter@lekensteyn.nl

Created attachment 12836 [details]
ASAN error (+gdb backtrace)

Build Information:
TShark 1.99.0 (v1.99.0-rc1-495-g37b903d from master)

Copyright 1998-2014 Gerald Combs <gerald@wireshark.org> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (64-bit) with GLib 2.40.0, with libpcap, with libz 1.2.8, with POSIX
capabilities (Linux), with libnl 3, without SMI, without c-ares, without ADNS,
with Lua 5.2, with GnuTLS 3.3.4, with Gcrypt 1.6.1, without Kerberos, without
GeoIP.

Running on Linux 3.15.0-rc8-custom-00058-gd2cfd31, with locale en_US.UTF-8,
with
libpcap version 1.5.3, with libz 1.2.8.
Intel(R) Core(TM) i5 CPU       M 460  @ 2.53GHz (with SSE4.2)

Built using gcc 4.9.0 20140604 (prerelease).
--
A capture file triggers the following ASAN violation:

==10556==ERROR: AddressSanitizer: global-buffer-overflow on address
0x7fffee6cb680 at pc 0x7fffe6ef6482 bp 0x7fffffffafa0 sp 0x7fffffffaf90
READ of size 16 at 0x7fffee6cb680 thread T0
    #0 0x7fffe6ef6481 in _mm_load_si128
/usr/lib/gcc/x86_64-unknown-linux-gnu/4.9.0/include/emmintrin.h:688
    #1 0x7fffe6ef6481 in _ws_mempbrk_sse42 wsutil/ws_mempbrk_sse42.c:133
    #2 0x7fffe6ef6239 in ws_mempbrk wsutil/ws_mempbrk.c:64
    #3 0x7fffecb5ec46 in guint8_pbrk epan/tvbuff.c:746
    #4 0x7fffecb63788 in tvb_pbrk_guint8 epan/tvbuff.c:1836
    #5 0x7fffecb663c8 in tvb_find_line_end epan/tvbuff.c:2980
    #6 0x7fffed8a8057 in dissect_smtp epan/dissectors/packet-smtp.c:476
[..]

0x7fffee6cb683 is located 0 bytes to the right of global variable 'crlf' from
'epan/tvbuff.c' (0x7fffee6cb680) of size 3
  'crlf' is ascii string '
'
SUMMARY: AddressSanitizer: global-buffer-overflow
/usr/lib/gcc/x86_64-unknown-linux-gnu/4.9.0/include/emmintrin.h:688
_mm_load_si128

See attachment for details.

You are receiving this mail because:

You are watching all bug changes.

Follow-Ups:
- [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 6302] OSPF LSA length minimum values
Next by Date: [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
Previous by thread: [Wireshark-bugs] [Bug 10213] extra quotes around date fields (FT_ABSOLUTE_TIME) when using -E quote=d or s
Next by thread: [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
Index(es):
- Date
- Thread