[Bro-Dev] [JIRA] (BIT-1463) heap overflow in PktSrc::Process
Johanna Amann (JIRA)
jira at bro-tracker.atlassian.net
Mon Aug 31 13:14:00 PDT 2015
[ https://bro-tracker.atlassian.net/browse/BIT-1463?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=21905#comment-21905 ]
Johanna Amann commented on BIT-1463:
------------------------------------
I have a fix in topic/johanna/bit-1463 that starts counting remaining bytes to see if there might be an access overflow in the header.
It fixes the problem in the presented trace and I hope that it also will fix similar problems with other headers (e.g. mpls/vlan/whatever).
> heap overflow in PktSrc::Process
> --------------------------------
>
> Key: BIT-1463
> URL: https://bro-tracker.atlassian.net/browse/BIT-1463
> Project: Bro Issue Tracker
> Issue Type: Problem
> Components: Bro
> Affects Versions: 2.4
> Reporter: Justin Azoff
> Assignee: Johanna Amann
> Attachments: pktsrc_bug.pcap
>
>
> {code}
> ==11569==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x6020001bcbfc at pc 0x000000da1f1b bp 0x7fff726f3d90 sp 0x7fff726f3d88
> READ of size 1 at 0x6020001bcbfc thread T0
> #0 0xda1f1a in iosource::PktSrc::Process() /scratch/bro-clean/src/iosource/PktSrc.cc:325:3
> #1 0x7ba7bf in net_run() /scratch/bro-clean/src/Net.cc:330:4
> #2 0x641d9c in main /scratch/bro-clean/src/main.cc:1199:3
> #3 0x7f2fd89beb44 in __libc_start_main /tmp/buildd/glibc-2.19/csu/libc-start.c:287
> #4 0x5ee98c in _start (/scratch/bro-clean/build/src/bro+0x5ee98c)
> {code}
--
This message was sent by Atlassian JIRA
(v7.0.0-OD-02-259#70102)
More information about the bro-dev
mailing list