Wireshark-bugs: [Wireshark-bugs] [Bug 11507] Buildbot crash output: fuzz-2015-09-07-19251.pcap
Date: Mon, 07 Sep 2015 23:06:58 +0000

Comment # 1 on bug 11507 from
(In reply to Buildbot Builder from comment #0)
> ==12169==  Address 0x0 is not stack'd, malloc'd or (recently) free'd

Dear Valgrind: on all the platforms on which you run, it's called a "null
pointer".

This is *probably* the result of AES_unwrap() returning a null pointer.  It
can:

        if (kek == NULL || cipher_len < 16 || cipher_text == NULL) {
                return NULL; /* "should not happen" */
        }

The call to AES_unwrap() in AirPDcapDecryptWPABroadcastKey() is:

            decrypted_data = AES_unwrap(decryption_key, 16, szEncryptedKey, 
key_bytes_len);

so it will fail if key_bytes_len is less than 16 - the "16" in the call is the
key_len argument.


You are receiving this mail because:
  • You are watching all bug changes.