Bug#546590: marked as done (hping3: incorrect data size check for UDP)

Fri, 23 Oct 2009 22:06:56 -0700 

Your message dated Sat, 24 Oct 2009 04:32:30 +0000
with message-id <[email protected]>
and subject line Bug#546590: fixed in hping3 3.a2.ds2-6
has caused the Debian Bug report #546590,
regarding hping3: incorrect data size check for UDP
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
546590: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=546590
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: hping3
Version: 3.a2.ds2-4
Severity: normal
Tags: patch


Hi,
it seems hping3, when working in udp mode, checks the size passed to
--data option with the size of a tcp header.

The attached patch should fix the problem using UDPHDR_SIZE when udp
mode is set, otherwise using TCPHDR_SIZE.

Please can you forward this patch upstream? Many parts of their website
seem down so I was not able to checkout latest sources and send a proper
patch to them.


Thank you,

Luca


-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.30.5-ipn
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages hping3 depends on:
ii  libc6                         2.9-18     GNU C Library: Shared libraries
ii  libpcap0.8                    1.0.0-2    system interface for user-level pa
ii  tcl8.4                        8.4.19-4   Tcl (the Tool Command Language) v8

hping3 recommends no packages.

hping3 suggests no packages.

-- no debconf information

--- parseoptions.c_ORIG	2009-09-14 12:01:07.000000000 +0100
+++ parseoptions.c	2009-09-14 12:01:17.000000000 +0100
@@ -569,9 +573,12 @@
 	if (opt_numeric == TRUE) opt_gethost = FALSE;
 
 	/* some error condition */
-	if (data_size+IPHDR_SIZE+TCPHDR_SIZE > 65535) {
+	if (data_size+IPHDR_SIZE+
+	    (opt_udpmode?UDPHDR_SIZE:TCPHDR_SIZE) > 65535) {
 		printf("Option error: sorry, data size must be <= %lu\n",
-			(unsigned long)(65535-IPHDR_SIZE+TCPHDR_SIZE));
+			(unsigned long)(65535-(IPHDR_SIZE+
+					(opt_udpmode?UDPHDR_SIZE:TCPHDR_SIZE)))
+				       );
 		exit(1);
 	}
 	else if (count <= 0 && count != -1) {

--- End Message ---
--- Begin Message --- 
Source: hping3
Source-Version: 3.a2.ds2-6

We believe that the bug you reported is fixed in the latest version of
hping3, which is due to be installed in the Debian FTP archive:

hping3_3.a2.ds2-6.diff.gz
  to pool/main/h/hping3/hping3_3.a2.ds2-6.diff.gz
hping3_3.a2.ds2-6.dsc
  to pool/main/h/hping3/hping3_3.a2.ds2-6.dsc
hping3_3.a2.ds2-6_amd64.deb
  to pool/main/h/hping3/hping3_3.a2.ds2-6_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Guillaume Delacour <[email protected]> (supplier of updated hping3 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Sat, 19 Sep 2009 12:35:34 +0000
Source: hping3
Binary: hping3
Architecture: source amd64
Version: 3.a2.ds2-6
Distribution: unstable
Urgency: low
Maintainer: Guillaume Delacour <[email protected]>
Changed-By: Guillaume Delacour <[email protected]>
Description: 
 hping3     - Active Network Smashing Tool
Closes: 409391 546590
Changes: 
 hping3 (3.a2.ds2-6) unstable; urgency=low
 .
   * debian/patches/140_data_size_udp.diff: Fix incorrect data size
     check for UDP (Closes: #546590), thanks to Luca Bigliardi.
   * debian/patches/150_gnu_kfreebsd.diff: Fix FTBFS for kfreebsd-{i386,amd64}.
   * debian/patches/160_tcp_mss.diff: Add support to TCP MSS from NetBSD:
     patch-aa, patch-ai, patch-aj, patch-ak, patch-al, patch-am, patch-an
     (Closes: #409391).
Checksums-Sha1: 
 38eb042cd57fd4fa680b0af29bd5dff4ab3efcf8 1152 hping3_3.a2.ds2-6.dsc
 049c6e227b8ef589219384b46ec4fb051fd4c453 21324 hping3_3.a2.ds2-6.diff.gz
 d9992b82097ce829d18a4b9fd781b72ca9cfaa78 110224 hping3_3.a2.ds2-6_amd64.deb
Checksums-Sha256: 
 bae8dd97587ba4f2d86b2bf8d404dddf6440aa57e8e32601f390cb7ddea93ca3 1152 
hping3_3.a2.ds2-6.dsc
 24e8c993e0b530668434273eea6111fdd54b1d4ae792b2737a4c7f43c952917b 21324 
hping3_3.a2.ds2-6.diff.gz
 ab6ab59e5ef03e205a5240f66c14611bcf135a6c8246ec930bad8996df73fe22 110224 
hping3_3.a2.ds2-6_amd64.deb
Files: 
 121e6ca03004ea2fb8ff954b7ce5ff7b 1152 net extra hping3_3.a2.ds2-6.dsc
 a81ae8e106e1dc82b64459cefcb736a3 21324 net extra hping3_3.a2.ds2-6.diff.gz
 7e6b4d9f6bffbb6aea52f1c1f17159a7 110224 net extra hping3_3.a2.ds2-6_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkrigMUACgkQ5TUK4GCH0vib2ACgsUczAM4+eUT77CnWZ5zTmrsK
4FgAmgPwNhvmpwtu0D4FBS/kulIIYFXn
=8a39
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to