Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 11045] New: Bad interpretation of "Certificate Verify" in TLSv1.2

Wireshark-bugs: [Wireshark-bugs] [Bug 11045] New: Bad interpretation of "Certificate Verify" in

Date: Tue, 10 Mar 2015 07:56:00 +0000

Bug ID	11045
Summary	Bad interpretation of "Certificate Verify" in TLSv1.2
Product	Wireshark
Version	1.12.4
Hardware	x86-64
OS	Windows 7
Status	UNCONFIRMED
Severity	Major
Priority	Low
Component	Dissection engine (libwireshark)
Assignee	bugzilla-admin@wireshark.org
Reporter	bionet.armote@gmail.com

Created attachment 13499 [details]
dissection of the packet

Build Information:
Version 1.12.4 (v1.12.4-0-gb4861da from master-1.12)

Copyright 1998-2015 Gerald Combs <gerald@wireshark.org> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (64-bit) with GTK+ 2.24.23, with Cairo 1.10.2, with Pango 1.34.0, with
GLib 2.38.0, with WinPcap (4_1_3), with libz 1.2.5, with SMI 0.4.8, with c-ares
1.9.1, with Lua 5.2, without Python, with GnuTLS 3.2.15, with Gcrypt 1.6.2,
without Kerberos, with GeoIP, with PortAudio V19-devel (built Mar  4 2015),
with
AirPcap.

Running on 64-bit Windows 7 Service Pack 1, build 7601, with WinPcap version
4.1.3 (packet.dll version 4.1.0.2980), based on libpcap version 1.0 branch
1_0_rel0b (20091008), GnuTLS 3.2.15, Gcrypt 1.6.2, without AirPcap.
Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz, with 16065MB of physical memory.


Built using Microsoft Visual C++ 10.0 build 40219

Wireshark is Open Source Software released under the GNU General Public
License.

Check the man page and http://www.wireshark.org for more information.
--
In TLSv1.2 the "Certificate Verify" message contains additional fields before
the "Signature length" field. First is the hash algorithm identifier (1 octet),
and second is the signature algorithm identifier (1 octet).

You are receiving this mail because:

You are watching all bug changes.

Follow-Ups:
- [Wireshark-bugs] [Bug 11045] Bad interpretation of "Certificate Verify" in TLSv1.2
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 11045] Bad interpretation of "Certificate Verify" in TLSv1.2
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 11045] Bad interpretation of "Certificate Verify" in TLSv1.2
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 11045] Bad interpretation of "Certificate Verify" in TLSv1.2
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 11045] Bad interpretation of "Certificate Verify" in TLSv1.2
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 11045] Bad interpretation of "Certificate Verify" in TLSv1.2
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 11045] Bad interpretation of "Certificate Verify" in TLSv1.2
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 11045] Bad interpretation of "Certificate Verify" in TLSv1.2
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 11045] Bad interpretation of "Certificate Verify" in TLSv1.2
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 11042] dissection not happening properly for latitude and longitude in PMIPv6 PBU request
Next by Date: [Wireshark-bugs] [Bug 11042] dissection not happening properly for latitude and longitude in PMIPv6 PBU request
Previous by thread: [Wireshark-bugs] [Bug 7607] Websocket dissector does not support Websocket fragmentation (reports Malformed packets)
Next by thread: [Wireshark-bugs] [Bug 11045] Bad interpretation of "Certificate Verify" in TLSv1.2
Index(es):
- Date
- Thread