[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 Gerald Combs changed: What|Removed |Added See Also||http://cve.mitre.org/cgi-bi ||n/cvename.cgi?name=CVE-2018 ||-19625 -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 Peter Wu changed: What|Removed |Added Resolution|--- |FIXED Status|IN_PROGRESS |RESOLVED --- Comment #13 from Peter Wu --- Fixed tshark crash (denial of service) in v2.9.0rc0-2180-gec5adb0ce9 v2.6.5rc0-5-gf489f8f2c4 v2.4.11rc0-5-gdc4d209f39 (older versions are also affected, but no longer supported) -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 --- Comment #12 from Gerrit Code Review --- Change 30153 merged by Peter Wu: tvbuff_composite: fix buffer overflow due to wrong offset adjustment https://code.wireshark.org/review/30153 -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 --- Comment #9 from Gerrit Code Review --- Change 30152 had a related patch set uploaded by Peter Wu: tvbuff_composite: fix buffer overflow due to wrong offset adjustment https://code.wireshark.org/review/30152 -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 --- Comment #11 from Gerrit Code Review --- Change 30153 had a related patch set uploaded by Peter Wu: tvbuff_composite: fix buffer overflow due to wrong offset adjustment https://code.wireshark.org/review/30153 -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 --- Comment #10 from Gerrit Code Review --- Change 30152 merged by Peter Wu: tvbuff_composite: fix buffer overflow due to wrong offset adjustment https://code.wireshark.org/review/30152 -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 --- Comment #8 from Gerrit Code Review --- Change 30124 merged by Anders Broman: tvbuff_composite: fix buffer overflow due to wrong offset adjustment https://code.wireshark.org/review/30124 -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 --- Comment #7 from Gerrit Code Review --- Change 30124 had a related patch set uploaded by Peter Wu: tvbuff_composite: fix buffer overflow due to wrong offset adjustment https://code.wireshark.org/review/30124 -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 Peter Wu changed: What|Removed |Added Component|TShark |Dissection engine ||(libwireshark) Status|CONFIRMED |IN_PROGRESS --- Comment #6 from Peter Wu --- Moving back to the dissectors engine, it turns out that the problem is related to the composite TVB API. -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 Peter Wu changed: What|Removed |Added Component|Dissection engine |TShark |(libwireshark) | CC||pe...@lekensteyn.nl --- Comment #5 from Peter Wu --- Reproduced this with ASAN on v2.9.0rc0-2171-g6ee31a8064 v2.4.10rc0-58-g1900d9e6d5 v2.6.4rc0-111-gb2bbd9fdf2 I believe this is not a dissection issue as Wireshark (Qt) is fine, it is probably a tshark issue. -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 Pascal Quantin changed: What|Removed |Added Status|INCOMPLETE |CONFIRMED --- Comment #4 from Pascal Quantin --- Using clang (instead of gcc) with the options provided allows to reproduce the issue. -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 --- Comment #3 from otto.air...@gmail.com --- I pulled latest changes: commit dd21b8130c6470d2d5076fcc46d5e9c3866f4609 Compiled: export CC=clang export CXX=clang++ export CFLAGS="-g -O2 -fsanitize=address -fsanitize-coverage=edge -fno-omit-frame-pointer" export CXXFLAGS="-g -O2 -fsanitize=address -fsanitize-coverage=edge -fno-omit-frame-pointer" export CPPFLAGS="-g -O2 -fsanitize=address -fsanitize-coverage=edge -fno-omit-frame-pointer" export LDFLAGS="-g -fsanitize=address -fsanitize-coverage=edge" ./autogen.sh ./configure --enable-static=no --enable-shared=yes --enable-wireshark=no --enable-editcap=no --enable-capinfos=no --enable-mergecap=no --enable-reordercap=no --enable-text2pcap=no --enable-dftest=no --enable-randpkt=no --enable-dumpcap=yes --enable-rawshark=no make Executed command: tshark -2 -V -r 1be0e377ced0929006e6899ba57b1243.pcap Sorry, original post was missing tshark command. -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 Pascal Quantin changed: What|Removed |Added Ever confirmed|0 |1 CC||pascal.quan...@gmail.com Status|UNCONFIRMED |INCOMPLETE --- Comment #2 from Pascal Quantin --- I cannot reproduce it with v2.5.1rc0-451-gb99b9b81. Could you please verify if you can reproduce it with current top of tree, and if yes could you share your Wireshark user profile? -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe
[Wireshark-bugs] [Bug 14466] Crafted H.225 packets causing read heap-buffer-overflow
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466 --- Comment #1 from otto.air...@gmail.com --- Created attachment 16174 --> https://bugs.wireshark.org/bugzilla/attachment.cgi?id=16174&action=edit second capture file -- You are receiving this mail because: You are watching all bug changes.___ Sent via:Wireshark-bugs mailing list Archives:https://www.wireshark.org/lists/wireshark-bugs Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe