Wireshark-bugs: [Wireshark-bugs] [Bug 10224] Buildbot crash output: fuzz-2014-06-24-6764.pcap
Date: Tue, 24 Jun 2014 22:09:19 +0000

changed bug 10224

What Removed Added
CC   eapache@gmail.com

Comment # 3 on bug 10224 from
==7351== Conditional jump or move depends on uninitialised value(s)
==7351==    at 0x644DA76: dissect_ber_sequence (packet-ber.c:2083)
==7351==    by 0x6D82AB1: dissect_ldap_payload (ldap.cnf:791)
==7351==    by 0x6D831EA: dissect_sasl_ldap_pdu (packet-ldap-template.c:1634)
==7351==    by 0x6A2B404: tcp_dissect_pdus (packet-tcp.c:2331)
==7351==    by 0x6D82950: dissect_ldap_tcp (packet-ldap-template.c:1936)
==7351==    by 0x631F9FE: call_dissector_through_handle (packet.c:622)
==7351==    by 0x63202E4: call_dissector_work (packet.c:713)
==7351==    by 0x632099B: dissector_try_uint_new (packet.c:1145)
==7351==    by 0x6A2B72B: decode_tcp_ports (packet-tcp.c:3954)
==7351==    by 0x6A2BA9E: process_tcp_payload (packet-tcp.c:4026)
==7351==    by 0x6A2C06F: dissect_tcp_payload (packet-tcp.c:1840)
==7351==    by 0x6A2DB5E: dissect_tcp (packet-tcp.c:4924)
==7351==  Uninitialised value was created by a stack allocation
==7351==    at 0x6D82B80: dissect_ldap_pdu (packet-ldap-template.c:1027)
==7351== 
==7351== Conditional jump or move depends on uninitialised value(s)
==7351==    at 0x633634C: proto_tree_add_item_new (proto.c:1993)
==7351==    by 0x644DA94: dissect_ber_sequence (packet-ber.c:2084)
==7351==    by 0x6D82AB1: dissect_ldap_payload (ldap.cnf:791)
==7351==    by 0x6D831EA: dissect_sasl_ldap_pdu (packet-ldap-template.c:1634)
==7351==    by 0x6A2B404: tcp_dissect_pdus (packet-tcp.c:2331)
==7351==    by 0x6D82950: dissect_ldap_tcp (packet-ldap-template.c:1936)
==7351==    by 0x631F9FE: call_dissector_through_handle (packet.c:622)
==7351==    by 0x63202E4: call_dissector_work (packet.c:713)
==7351==    by 0x632099B: dissector_try_uint_new (packet.c:1145)
==7351==    by 0x6A2B72B: decode_tcp_ports (packet-tcp.c:3954)
==7351==    by 0x6A2BA9E: process_tcp_payload (packet-tcp.c:4026)
==7351==    by 0x6A2C06F: dissect_tcp_payload (packet-tcp.c:1840)
==7351==  Uninitialised value was created by a stack allocation
==7351==    at 0x6D82B80: dissect_ldap_pdu (packet-ldap-template.c:1027)
==7351== 
==7351== Use of uninitialised value of size 8
==7351==    at 0x6336352: proto_tree_add_item_new (proto.c:1993)
==7351==    by 0x644DA94: dissect_ber_sequence (packet-ber.c:2084)
==7351==    by 0x6D82AB1: dissect_ldap_payload (ldap.cnf:791)
==7351==    by 0x6D831EA: dissect_sasl_ldap_pdu (packet-ldap-template.c:1634)
==7351==    by 0x6A2B404: tcp_dissect_pdus (packet-tcp.c:2331)
==7351==    by 0x6D82950: dissect_ldap_tcp (packet-ldap-template.c:1936)
==7351==    by 0x631F9FE: call_dissector_through_handle (packet.c:622)
==7351==    by 0x63202E4: call_dissector_work (packet.c:713)
==7351==    by 0x632099B: dissector_try_uint_new (packet.c:1145)
==7351==    by 0x6A2B72B: decode_tcp_ports (packet-tcp.c:3954)
==7351==    by 0x6A2BA9E: process_tcp_payload (packet-tcp.c:4026)
==7351==    by 0x6A2C06F: dissect_tcp_payload (packet-tcp.c:1840)
==7351==  Uninitialised value was created by a stack allocation
==7351==    at 0x6D82B80: dissect_ldap_pdu (packet-ldap-template.c:1027)
==7351== 
==7351== Invalid read of size 4
==7351==    at 0x6336356: proto_tree_add_item_new (proto.c:1993)
==7351==    by 0x644DA94: dissect_ber_sequence (packet-ber.c:2084)
==7351==    by 0x6D82AB1: dissect_ldap_payload (ldap.cnf:791)
==7351==    by 0x6D831EA: dissect_sasl_ldap_pdu (packet-ldap-template.c:1634)
==7351==    by 0x6A2B404: tcp_dissect_pdus (packet-tcp.c:2331)
==7351==    by 0x6D82950: dissect_ldap_tcp (packet-ldap-template.c:1936)
==7351==    by 0x631F9FE: call_dissector_through_handle (packet.c:622)
==7351==    by 0x63202E4: call_dissector_work (packet.c:713)
==7351==    by 0x632099B: dissector_try_uint_new (packet.c:1145)
==7351==    by 0x6A2B72B: decode_tcp_ports (packet-tcp.c:3954)
==7351==    by 0x6A2BA9E: process_tcp_payload (packet-tcp.c:4026)
==7351==    by 0x6A2C06F: dissect_tcp_payload (packet-tcp.c:1840)
==7351==  Address 0x36500000375 is not stack'd, malloc'd or (recently) free'd
==7351== 
==7351== 
==7351== Process terminating with default action of signal 11 (SIGSEGV)
==7351==  Access not within mapped region at address 0x36500000375
==7351==    at 0x6336356: proto_tree_add_item_new (proto.c:1993)
==7351==    by 0x644DA94: dissect_ber_sequence (packet-ber.c:2084)
==7351==    by 0x6D82AB1: dissect_ldap_payload (ldap.cnf:791)
==7351==    by 0x6D831EA: dissect_sasl_ldap_pdu (packet-ldap-template.c:1634)
==7351==    by 0x6A2B404: tcp_dissect_pdus (packet-tcp.c:2331)
==7351==    by 0x6D82950: dissect_ldap_tcp (packet-ldap-template.c:1936)
==7351==    by 0x631F9FE: call_dissector_through_handle (packet.c:622)
==7351==    by 0x63202E4: call_dissector_work (packet.c:713)
==7351==    by 0x632099B: dissector_try_uint_new (packet.c:1145)
==7351==    by 0x6A2B72B: decode_tcp_ports (packet-tcp.c:3954)
==7351==    by 0x6A2BA9E: process_tcp_payload (packet-tcp.c:4026)
==7351==    by 0x6A2C06F: dissect_tcp_payload (packet-tcp.c:1840)


You are receiving this mail because:
  • You are watching all bug changes.