Wireshark-bugs: [Wireshark-bugs] [Bug 12344] New: Buildbot crash output: fuzz-2016-04-16-19092.p
Date: Sat, 16 Apr 2016 19:20:03 +0000
Bug ID 12344
Summary Buildbot crash output: fuzz-2016-04-16-19092.pcap
Product Wireshark
Version unspecified
Hardware x86-64
URL https://www.wireshark.org/download/automated/captures/fuzz-2016-04-16-19092.pcap
OS Ubuntu
Status CONFIRMED
Severity Major
Priority High
Component Dissection engine (libwireshark)
Assignee bugzilla-admin@wireshark.org
Reporter buildbot-do-not-reply@wireshark.org

Problems have been found with the following capture file:

https://www.wireshark.org/download/automated/captures/fuzz-2016-04-16-19092.pcap

stderr:
Input file: /home/wireshark/menagerie/menagerie/sctp-www.cab

Build host information:
Linux wsbb04 3.13.0-85-generic #129-Ubuntu SMP Thu Mar 17 20:50:15 UTC 2016
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 14.04.4 LTS
Release:    14.04
Codename:    trusty

Buildbot information:
BUILDBOT_REPOSITORY=ssh://wireshark-buildbot@code.wireshark.org:29418/wireshark
BUILDBOT_BUILDNUMBER=3567
BUILDBOT_URL=http://buildbot.wireshark.org/wireshark-master/
BUILDBOT_BUILDERNAME=Clang Code Analysis
BUILDBOT_SLAVENAME=clang-code-analysis
BUILDBOT_GOT_REVISION=66417b17b3570b163a16ca81f71ce5bcb10548d2

Return value:  1

Dissector bug:  0

Valgrind error count:  0



Git commit
commit 66417b17b3570b163a16ca81f71ce5bcb10548d2
Author: Guy Harris <guy@alum.mit.edu>
Date:   Fri Apr 15 13:47:41 2016 -0700

    Check first, then allocate.

    While we're at it, the MS-WSP spec says that the array size is unsigned,
    and sizeof is always unsigned, so do unsigned arithmetic when doing the
    multiplication, so we don't have to worry about overflowing the maximum
    int size.

    Bug: 12341
    Change-Id: Ic68d35bc75330571ef1daa244e8c94cb955955ca
    Reviewed-on: https://code.wireshark.org/review/14935
    Reviewed-by: Guy Harris <guy@alum.mit.edu>


ASAN:SIGSEGV
=================================================================
==1849==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000067 (pc
0x7f0e16c10e66 bp 0x7fff7dbb6a80 sp 0x7fff7dbb6700 T0)
    #0 0x7f0e16c10e65 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7ac7e65)
    #1 0x7f0e16c0eb36 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7ac5b36)
    #2 0x7f0e16582c31 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7439c31)
    #3 0x7f0e165828ca 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x74398ca)
    #4 0x7f0e1712ca66 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7fe3a66)
    #5 0x7f0e17125486 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7fdc486)
    #6 0x7f0e17121f60 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7fd8f60)
    #7 0x7f0e171212e5 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7fd82e5)
    #8 0x7f0e1711ee51 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7fd5e51)
    #9 0x7f0e16582c31 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7439c31)
    #10 0x7f0e165828ca 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x74398ca)
    #11 0x7f0e16cae3d3 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7b653d3)
    #12 0x7f0e16cb148b 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7b6848b)
    #13 0x7f0e16582c31 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7439c31)
    #14 0x7f0e16582ed8 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7439ed8)
    #15 0x7f0e16ac6841 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x797d841)
    #16 0x7f0e16582c31 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7439c31)
    #17 0x7f0e16580d3c 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7437d3c)
    #18 0x7f0e16ac4fe6 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x797bfe6)
    #19 0x7f0e16ac3c30 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x797ac30)
    #20 0x7f0e16582c31 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7439c31)
    #21 0x7f0e165828ca 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x74398ca)
    #22 0x7f0e16b10632 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x79c7632)
    #23 0x7f0e16582c31 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7439c31)
    #24 0x7f0e16580d3c 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7437d3c)
    #25 0x7f0e16580532 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7437532)
    #26 0x7f0e16560b0e 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/lib/libwireshark.so.0+0x7417b0e)
    #27 0x500fc9 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/bin/tshark+0x500fc9)
    #28 0x4fbc82 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/bin/tshark+0x4fbc82)
    #29 0x7f0e0c3f1ec4  (/lib/x86_64-linux-gnu/libc.so.6+0x21ec4)
    #30 0x4402c6 
(/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/bin/tshark+0x4402c6)

AddressSanitizer can not provide additional info.
==1849==ABORTING

[ no debug trace ]


You are receiving this mail because:
  • You are watching all bug changes.