Wireshark-users: Re: [Wireshark-users] in >wireshark-2.0.2, tshark follow ssl stream segfaults
From: Miroslav Rovis <miro.rovis@xxxxxxxxxxxxxxxxx>
Date: Wed, 13 Jul 2016 01:46:08 +0200
I guess that:
> ... as can be seen from the logs, I have a grsecurity-hardened kernel,
> it could have to do with that as well... 
grsec-hardening should not be suspect because all is fine after
downgrading to 2.0.2 .

> (Gentoo meta distro here, but I can't tell if I should file a bug on
> Gentoo bugzilla or Wireshark bugzilla, so I'm trying ML first.)
> 
...
> ... can't recall which one exact
> other --only one other version as well I tried-- I had this problem
> with...
The exact other version that I had this same problem is 2.0.4 (I have to
say I didn't check the system log, but I bet I would find similar or
same kind of segfaults).
 
I've carefully checked (not very advanced, but I have some not
completely vague understanding of these matters):
<net-analyzer/wireshark-2.0.3 multiple vulnerabilties
https://bugs.gentoo.org/show_bug.cgi?id=580882
and:
<net-analyzer/wireshark-2.0.4 multiple vulnerabilities
https://bugs.gentoo.org/show_bug.cgi?id=585348
and there is no case there very close to mine.

I have also searched Wireshark Bug Database on word "segmentation", and
I found no case there which would be very close to mine.

So I'm preparing to file a bug on Wireshark Bugzilla. The case here is
pretty distinct, and here it can always be reproduced (I never get SSL
streams with that command I gave in the previous email).

...
(Some patience might be needed. I don't work very fast.)

Regards!
-- 
Miroslav Rovis
Zagreb, Croatia
http://www.CroatiaFidelis.hr

Attachment: signature.asc
Description: PGP signature