Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 12302] New: NULL deref for all extcap programs since "Refactor wiretap option

Wireshark-bugs: [Wireshark-bugs] [Bug 12302] New: NULL deref for all extcap programs since "Refa

Date: Mon, 28 Mar 2016 17:05:12 +0000

Bug ID	12302
Summary	NULL deref for all extcap programs since "Refactor wiretap option block types into a registration system."
Product	Wireshark
Version	Git
Hardware	All
OS	All
Status	CONFIRMED
Severity	Major
Priority	Low
Component	Capture file support (libwiretap)
Assignee	bugzilla-admin@wireshark.org
Reporter	peter@lekensteyn.nl
CC	mmann78@netscape.net

Build Information:
v2.1.0rc0-2505-g6931f58
--
Since d7de3515db98a7444fe527c82de43bfaf550b698 ("Refactor wiretap option block
types into a registration system."), all extcap programs crash on capture.

Somewhere a call to wtap_opttypes_initialize or wtap_register_plugin_types is
needed... see also the comments on https://code.wireshark.org/review/14300


run/extcap/randpktdump --extcap-interface=randpkt --capture --fifo /dev/null 
Generating packets: arp
wiretap/wtap_opttypes.c:126:18: runtime error: member access within null
pointer of type 'wtap_opt_register_t' (aka 'struct wtap_opt_register')
SUMMARY: AddressSanitizer: undefined-behavior wiretap/wtap_opttypes.c:126:18 in 
ASAN:SIGSEGV
=================================================================
==31635==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000010 (pc
0x7f731abe01c5 bp 0x7fff359e37b0 sp 0x7fff359e3730 T0)
    #0 0x7f731abe01c4 in wtap_optionblock_create wiretap/wtap_opttypes.c:126:18
    #1 0x7f731a90300c in wtap_dump_init_dumper wiretap/file_access.c:2182:11
    #2 0x7f731a901bd1 in wtap_dump_open_ng wiretap/file_access.c:2214:8
    #3 0x7f731a901b5c in wtap_dump_open wiretap/file_access.c:2202:9
    #4 0x55888a2797c5 in randpkt_example_init
randpkt_core/randpkt_core.c:686:19
    #5 0x55888a27594e in main extcap/randpktdump.c:297:4
    #6 0x7f73194f470f in __libc_start_main (/usr/lib/libc.so.6+0x2070f)
    #7 0x55888a1aede8 in _start (run/extcap/randpktdump+0x20de8)

AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV wiretap/wtap_opttypes.c:126:18 in
wtap_optionblock_create
==31635==ABORTING

You are receiving this mail because:

You are watching all bug changes.

Prev by Date: [Wireshark-bugs] [Bug 12044] Selecting packets causes memory leak
Next by Date: [Wireshark-bugs] [Bug 12278] Buildbot crash output: fuzz-2016-03-22-29021.pcap
Previous by thread: [Wireshark-bugs] [Bug 12301] HTTP dissector presents data as TCP data only
Next by thread: [Wireshark-bugs] [Bug 10788] prevent linking against your older installed libraries
Index(es):
- Date
- Thread