[Bro-Dev] [JIRA] (BIT-1463) heap overflow in PktSrc::Process

Johanna Amann (JIRA) jira at bro-tracker.atlassian.net
Mon Aug 31 13:14:00 PDT 2015


    [ https://bro-tracker.atlassian.net/browse/BIT-1463?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=21905#comment-21905 ] 

Johanna Amann commented on BIT-1463:
------------------------------------

I have a fix in topic/johanna/bit-1463 that starts counting remaining bytes to see if there might be an access overflow in the header.

It fixes the problem in the presented trace and I hope that it also will fix similar problems with other headers (e.g. mpls/vlan/whatever).

> heap overflow in PktSrc::Process
> --------------------------------
>
>                 Key: BIT-1463
>                 URL: https://bro-tracker.atlassian.net/browse/BIT-1463
>             Project: Bro Issue Tracker
>          Issue Type: Problem
>          Components: Bro
>    Affects Versions: 2.4
>            Reporter: Justin Azoff
>            Assignee: Johanna Amann
>         Attachments: pktsrc_bug.pcap
>
>
> {code}
> ==11569==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x6020001bcbfc at pc 0x000000da1f1b bp 0x7fff726f3d90 sp 0x7fff726f3d88
> READ of size 1 at 0x6020001bcbfc thread T0
>     #0 0xda1f1a in iosource::PktSrc::Process() /scratch/bro-clean/src/iosource/PktSrc.cc:325:3
>     #1 0x7ba7bf in net_run() /scratch/bro-clean/src/Net.cc:330:4
>     #2 0x641d9c in main /scratch/bro-clean/src/main.cc:1199:3
>     #3 0x7f2fd89beb44 in __libc_start_main /tmp/buildd/glibc-2.19/csu/libc-start.c:287
>     #4 0x5ee98c in _start (/scratch/bro-clean/build/src/bro+0x5ee98c)
> {code}



--
This message was sent by Atlassian JIRA
(v7.0.0-OD-02-259#70102)


More information about the bro-dev mailing list