Wireshark-bugs: [Wireshark-bugs] [Bug 9275] New: Buildbot crash output: fuzz-2013-10-16-12775.pc
Date: Wed, 16 Oct 2013 18:40:04 +0000
Bug ID 9275
Summary Buildbot crash output: fuzz-2013-10-16-12775.pcap
Classification Unclassified
Product Wireshark
Version unspecified
Hardware x86-64
URL http://www.wireshark.org/download/automated/captures/fuzz-2013-10-16-12775.pcap
OS Ubuntu
Status CONFIRMED
Severity Major
Priority High
Component Dissection engine (libwireshark)
Assignee bugzilla-admin@wireshark.org
Reporter buildbot-do-not-reply@wireshark.org

Problems have been found with the following capture file:

http://www.wireshark.org/download/automated/captures/fuzz-2013-10-16-12775.pcap

stderr:
Input file: /home/wireshark/menagerie/menagerie/10860-packet-gsm.pcap

Build host information:
Linux wsbb04 3.2.0-49-generic #75-Ubuntu SMP Tue Jun 18 17:39:32 UTC 2013
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 12.04.2 LTS
Release:    12.04
Codename:    precise

Buildbot information:
BUILDBOT_REPOSITORY=http://code.wireshark.org/git/wireshark
BUILDBOT_BUILDNUMBER=2127
BUILDBOT_URL=http://buildbot.wireshark.org/trunk/
BUILDBOT_BUILDERNAME=Clang-Code-Analysis
BUILDBOT_SLAVENAME=clang-code-analysis
BUILDBOT_GOT_REVISION=9011036f761f46bd6c7d6d6f4e407f274bcc4ea9

Return value:  0

Dissector bug:  0

Valgrind error count:  32



Git commit
commit 9011036f761f46bd6c7d6d6f4e407f274bcc4ea9
Author: Gerald Combs <gerald@wireshark.org>
Date:   Mon Oct 14 17:23:58 2013 +0000

    Look for QtWidgets in the right directory.

    svn path=/trunk/; revision=52601


Command and args: ./tools/valgrind-wireshark.sh 

==29105== Memcheck, a memory error detector
==29105== Copyright (C) 2002-2011, and GNU GPL'd, by Julian Seward et al.
==29105== Using Valgrind-3.7.0 and LibVEX; rerun with -h for copyright info
==29105== Command:
/home/wireshark/builders/trunk-clang-ca/clangcodeanalysis/install/bin/tshark
-nr /fuzz/buildbot/clangcodeanalysis/valgrind-fuzz/fuzz-2013-10-16-12775.pcap
==29105== 
==29105== Conditional jump or move depends on uninitialised value(s)
==29105==    at 0x678E1D9: dissect_cbch (packet-gsm_cbch.c:263)
==29105==    by 0x6488917: call_dissector_through_handle (packet.c:519)
==29105==    by 0x6489264: call_dissector_work (packet.c:613)
==29105==    by 0x648B150: call_dissector_with_data (packet.c:2131)
==29105==    by 0x6488917: call_dissector_through_handle (packet.c:519)
==29105==    by 0x6489264: call_dissector_work (packet.c:613)
==29105==    by 0x6489C12: dissector_try_uint_new (packet.c:1044)
==29105==    by 0x6489C66: dissector_try_uint (packet.c:1070)
==29105==    by 0x6B3DFC7: decode_udp_ports (packet-udp.c:342)
==29105==    by 0x6B3E5D1: dissect (packet-udp.c:661)
==29105==    by 0x6488917: call_dissector_through_handle (packet.c:519)
==29105==    by 0x6489264: call_dissector_work (packet.c:613)
==29105== 
==29105== Conditional jump or move depends on uninitialised value(s)
==29105==    at 0x678E1EC: dissect_cbch (packet-gsm_cbch.c:263)
==29105==    by 0x6488917: call_dissector_through_handle (packet.c:519)
==29105==    by 0x6489264: call_dissector_work (packet.c:613)
==29105==    by 0x648B150: call_dissector_with_data (packet.c:2131)
==29105==    by 0x6488917: call_dissector_through_handle (packet.c:519)
==29105==    by 0x6489264: call_dissector_work (packet.c:613)
==29105==    by 0x6489C12: dissector_try_uint_new (packet.c:1044)
==29105==    by 0x6489C66: dissector_try_uint (packet.c:1070)
==29105==    by 0x6B3DFC7: decode_udp_ports (packet-udp.c:342)
==29105==    by 0x6B3E5D1: dissect (packet-udp.c:661)
==29105==    by 0x6488917: call_dissector_through_handle (packet.c:519)
==29105==    by 0x6489264: call_dissector_work (packet.c:613)
==29105== 
==29105== 
==29105== HEAP SUMMARY:
==29105==     in use at exit: 473,498 bytes in 6,670 blocks
==29105==   total heap usage: 1,013,454 allocs, 1,006,784 frees, 53,354,710
bytes allocated
==29105== 
==29105== LEAK SUMMARY:
==29105==    definitely lost: 2,704 bytes in 43 blocks
==29105==    indirectly lost: 696 bytes in 7 blocks
==29105==      possibly lost: 0 bytes in 0 blocks
==29105==    still reachable: 470,098 bytes in 6,620 blocks
==29105==         suppressed: 0 bytes in 0 blocks
==29105== Rerun with --leak-check=full to see details of leaked memory
==29105== 
==29105== For counts of detected and suppressed errors, rerun with: -v
==29105== Use --track-origins=yes to see where uninitialised values come from
==29105== ERROR SUMMARY: 32 errors from 2 contexts (suppressed: 3 from 3)

[ no debug trace ]


You are receiving this mail because:
  • You are watching all bug changes.