Wireshark-bugs: [Wireshark-bugs] [Bug 11730] New: Wireshark crashes dissecting Profinet NRT (DCE
Date: Thu, 19 Nov 2015 14:24:42 +0000
Bug ID 11730
Summary Wireshark crashes dissecting Profinet NRT (DCE-RPC) packet
Product Wireshark
Version 2.0.0
Hardware x86
OS Windows 7
Status UNCONFIRMED
Severity Major
Priority Low
Component Qt UI
Assignee bugzilla-admin@wireshark.org
Reporter ahmad@a3f.at

Created attachment 14014 [details]
crashing capture file

Build Information:
Version 2.0.0 (v2.0.0-0-g9a73b82 from master-2.0)

Copyright 1998-2015 Gerald Combs <gerald@wireshark.org> and contributors.
License GPLv2+: GNU GPL version 2 or later
<http://www.gnu.org/licenses/old-licenses/gpl-2.0.html>
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (64-bit) with Qt 5.3.2, with WinPcap (4_1_3), with libz 1.2.8, with
GLib 2.42.0, with SMI 0.4.8, with c-ares 1.9.1, with Lua 5.2, with GnuTLS
3.2.15, with Gcrypt 1.6.2, with MIT Kerberos, with GeoIP, with QtMultimedia,
with AirPcap.

Running on 64-bit Windows 7 Service Pack 1, build 7601, with locale C, with
WinPcap version 4.1.3 (packet.dll version 4.1.0.2980), based on libpcap version
1.0 branch 1_0_rel0b (20091008), with GnuTLS 3.2.15, with Gcrypt 1.6.2, without
AirPcap.
Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz (with SSE4.2), with 16267MB of physical
memory.


Built using Microsoft Visual C++ 12.0 build 31101

Wireshark is Open Source Software released under the GNU General Public
License.

Check the man page and http://www.wireshark.org for more information.
--
Steps to reproduce:

* Load attached capture
* Select a DCE-RPC (violet) packet (filter for dcerpc or for udp and scroll
down)
* Wireshark crashes

Same problem exists with the 32-Bit version.

Stack trace attached.


 # Child-SP          RetAddr           Call Site
00 00000000`002b9748 00000000`76f1294b ntdll!ZwTerminateProcess+0xa
01 00000000`002b9750 000007fe`ff1699e2 ntdll!RtlExitUserProcess+0x9b
02 00000000`002b9780 000007fe`ff1a541c msvcrt!wcstoui64+0x2fa
03 00000000`002b97c0 00000000`68615265 msvcrt!abort+0xa0
04 00000000`002b9d70 00000000`686152e2 libglib_2_0_0!g_assertion_message+0x155
05 00000000`002b9e20 000007fe`d61408c4
libglib_2_0_0!g_assertion_message_expr+0x52
06 00000000`002b9e80 000007fe`d6119c63 libwireshark!wmem_alloc+0x54
07 00000000`002b9ec0 000007fe`e8593a8f libwireshark!guid_to_str+0x13
08 00000000`002b9ef0 00000001`3f6ef868 profinet+0x13a8f
09 00000000`002b9f50 00000001`3f73bcc0 wireshark+0x5f868
0a 00000000`002ba0f0 00000000`666ddf8c wireshark+0xabcc0
0b 00000000`002ba1b0 00000001`3f704596 Qt5Core!QMetaObject::activate+0x59c
0c 00000000`002ba2c0 00000000`77cff0c0 wireshark+0x74596
0d 00000000`002ba320 00000000`666ddf8c
Qt5Widgets!QAbstractItemView::qt_static_metacall+0x2b0
0e 00000000`002ba380 00000000`6668ca42 Qt5Core!QMetaObject::activate+0x59c
0f 00000000`002ba490 00000000`666904f3
Qt5Core!QItemSelectionModel::emitSelectionChanged+0x582
10 00000000`002ba570 00000000`77d40dfd
Qt5Core!QItemSelectionModel::select+0x2c3
11 00000000`002ba610 00000000`77d42084
Qt5Widgets!QTreeViewPrivate::select+0x84d
12 00000000`002ba890 00000000`77d07549 Qt5Widgets!QTreeView::setSelection+0x314
13 00000000`002ba970 00000000`77d3db79
Qt5Widgets!QAbstractItemView::mousePressEvent+0x399


You are receiving this mail because:
  • You are watching all bug changes.