Your message dated Mon, 23 May 2011 19:03:23 +0000
with message-id <[email protected]>
and subject line Bug#627342: fixed in libpcap 1.1.1-6
has caused the Debian Bug report #627342,
regarding libpcap: crash in bpf interpreter with "ip6 protochain" filter
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
627342: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=627342
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: libpcap0.8
Version: 1.1.1-5
Severity: important
it's possible to crash libpcap in the bpf interpreter with an "ip6
protochain" filter. a test packet is attached; it is an ICMPv6 message
with an IPv6 hop-by-hop extension header. i was not able to reproduce
this with the latest version of libpcap from upstream git.
edmonds@chase{0}:~/packets$ tcpdump -nr ip6-hopbyhop-icmp.pcap
reading from file ip6-hopbyhop-icmp.pcap, link-type EN10MB (Ethernet)
18:43:07.098489 IP6 fe80::208:7dff:feb7:2cca > ff02::1: HBH ICMP6,
multicast listener queryv2 [gaddr ::], length 28
edmonds@chase{0}:~/packets$ tcpdump -nr ip6-hopbyhop-icmp.pcap 'ip6
protochain 1'
reading from file ip6-hopbyhop-icmp.pcap, link-type EN10MB (Ethernet)
zsh: segmentation fault tcpdump -nr ip6-hopbyhop-icmp.pcap 'ip6 protochain
1'
edmonds@chase{139}:~/packets$ valgrind tcpdump -nr ip6-hopbyhop-icmp.pcap
'ip6 protochain 1'
==24937== Memcheck, a memory error detector
==24937== Copyright (C) 2002-2010, and GNU GPL'd, by Julian Seward et al.
==24937== Using Valgrind-3.6.1 and LibVEX; rerun with -h for copyright info
==24937== Command: tcpdump -nr ip6-hopbyhop-icmp.pcap ip6\ protochain\ 1
==24937==
reading from file ip6-hopbyhop-icmp.pcap, link-type EN10MB (Ethernet)
==24937== Invalid read of size 2
==24937== at 0x5212EB8: bpf_filter (bpf_filter.c:242)
==24937== by 0x520D268: pcap_offline_read (savefile.c:379)
==24937== by 0x51FF60E: pcap_loop (pcap.c:423)
==24937== by 0x187644: main (in /usr/sbin/tcpdump)
==24937== Address 0x805bcc7d0 is not stack'd, malloc'd or (recently) free'd
==24937==
==24937==
==24937== Process terminating with default action of signal 11 (SIGSEGV)
==24937== Access not within mapped region at address 0x805BCC7D0
==24937== at 0x5212EB8: bpf_filter (bpf_filter.c:242)
==24937== by 0x520D268: pcap_offline_read (savefile.c:379)
==24937== by 0x51FF60E: pcap_loop (pcap.c:423)
==24937== by 0x187644: main (in /usr/sbin/tcpdump)
==24937== If you believe this happened as a result of a stack
==24937== overflow in your program's main thread (unlikely but
==24937== possible), you can try to increase the size of the
==24937== main thread stack using the --main-stacksize= flag.
==24937== The main thread stack size used in this run was 8388608.
==24937==
==24937== HEAP SUMMARY:
==24937== in use at exit: 3,473 bytes in 7 blocks
==24937== total heap usage: 23 allocs, 16 frees, 12,949 bytes allocated
==24937==
==24937== LEAK SUMMARY:
==24937== definitely lost: 0 bytes in 0 blocks
==24937== indirectly lost: 0 bytes in 0 blocks
==24937== possibly lost: 0 bytes in 0 blocks
==24937== still reachable: 3,473 bytes in 7 blocks
==24937== suppressed: 0 bytes in 0 blocks
==24937== Rerun with --leak-check=full to see details of leaked memory
==24937==
==24937== For counts of detected and suppressed errors, rerun with: -v
==24937== ERROR SUMMARY: 1 errors from 1 contexts (suppressed: 6 from 6)
zsh: segmentation fault valgrind tcpdump -nr ip6-hopbyhop-icmp.pcap 'ip6
protochain 1'
edmonds@chase{139}:~/packets$
--
Robert Edmonds
[email protected]
ip6-hopbyhop-icmp.pcap
Description: application/cap
signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---
Source: libpcap
Source-Version: 1.1.1-6
We believe that the bug you reported is fixed in the latest version of
libpcap, which is due to be installed in the Debian FTP archive:
libpcap-dev_1.1.1-6_all.deb
to main/libp/libpcap/libpcap-dev_1.1.1-6_all.deb
libpcap0.8-dbg_1.1.1-6_amd64.deb
to main/libp/libpcap/libpcap0.8-dbg_1.1.1-6_amd64.deb
libpcap0.8-dev_1.1.1-6_amd64.deb
to main/libp/libpcap/libpcap0.8-dev_1.1.1-6_amd64.deb
libpcap0.8_1.1.1-6_amd64.deb
to main/libp/libpcap/libpcap0.8_1.1.1-6_amd64.deb
libpcap_1.1.1-6.debian.tar.gz
to main/libp/libpcap/libpcap_1.1.1-6.debian.tar.gz
libpcap_1.1.1-6.dsc
to main/libp/libpcap/libpcap_1.1.1-6.dsc
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Romain Francoise <[email protected]> (supplier of updated libpcap package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Mon, 23 May 2011 19:13:27 +0200
Source: libpcap
Binary: libpcap-dev libpcap0.8-dev libpcap0.8 libpcap0.8-dbg
Architecture: source all amd64
Version: 1.1.1-6
Distribution: unstable
Urgency: low
Maintainer: Romain Francoise <[email protected]>
Changed-By: Romain Francoise <[email protected]>
Description:
libpcap-dev - development library for libpcap (transitional package)
libpcap0.8 - system interface for user-level packet capture
libpcap0.8-dbg - debugging symbols for libpcap0.8
libpcap0.8-dev - development library and header files for libpcap0.8
Closes: 623607 627342
Changes:
libpcap (1.1.1-6) unstable; urgency=low
.
* debian/patches/47_ip6_protochain.patch: New patch; fixes a crash in
the BPF interpreter with "ip6 protochain" on 64-bit platforms
(closes: #627342).
* debian/control: Avoid "we" in long description (closes: #623607).
* debian/control: Set Standards-Version to 3.9.2.
Checksums-Sha1:
2323b3ee6925b2b2768f38265730f06204a0711c 1257 libpcap_1.1.1-6.dsc
d6021920814e045d30628b45c386a7994259dd27 17665 libpcap_1.1.1-6.debian.tar.gz
b14794a8aae79bfc911e2f2ccef546278fe633a4 19908 libpcap-dev_1.1.1-6_all.deb
a42051662c565ad3d27c93804636d865a8dfb0ae 235092
libpcap0.8-dev_1.1.1-6_amd64.deb
df86afbebb4360209956a0b3edae4282c6b4a24d 131440 libpcap0.8_1.1.1-6_amd64.deb
8e21221f3fa31c58bffa94332c6a4928352fff61 155848
libpcap0.8-dbg_1.1.1-6_amd64.deb
Checksums-Sha256:
a7aadbb7eae24e4a30182f5ec4c05c61745bab83ecf776d6acd77563c174db52 1257
libpcap_1.1.1-6.dsc
b358a5ccf050007a281c1066fcdc2bfc252cce0ecd7b761fbba2484cbcf58cd6 17665
libpcap_1.1.1-6.debian.tar.gz
a7961294e3b4f4e1b8589bd769f28de46b61e2e6c338df4b23f5558ba98f2548 19908
libpcap-dev_1.1.1-6_all.deb
50049a5b093e5e9f86f6400010018a7a8f169269cea4d8b466f852b0127ff121 235092
libpcap0.8-dev_1.1.1-6_amd64.deb
28164b422112cabc155a3c3535d72784224d2352e2058f1bd7dc5eef58a35e42 131440
libpcap0.8_1.1.1-6_amd64.deb
633fba882fffa5d3817289f4671b774812cd17dd8f407e32f316e8a14b75a540 155848
libpcap0.8-dbg_1.1.1-6_amd64.deb
Files:
bd4be671ca426e40b68a2171e6f61f54 1257 devel optional libpcap_1.1.1-6.dsc
4a1710558c9363731d7153d1d173a795 17665 devel optional
libpcap_1.1.1-6.debian.tar.gz
fc855f9d3a39328dcf1c4ed50f128d05 19908 libdevel optional
libpcap-dev_1.1.1-6_all.deb
6bd3bc6ccef966e62692de86b1b444dc 235092 libdevel optional
libpcap0.8-dev_1.1.1-6_amd64.deb
4ae73cd3d3d9de6c34c7ce9becf43b3e 131440 libs optional
libpcap0.8_1.1.1-6_amd64.deb
bf2dcc13f2f4230ee09b1691c8c8426a 155848 debug extra
libpcap0.8-dbg_1.1.1-6_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iD8DBQFN2peRogN2vsA8Vt8RAlsSAJ9IZKhIl0FwjhREP7rhv5xrZWwINgCgu/lM
TrmwLU2BFyGFwU/HOcTuxeM=
=TT0N
-----END PGP SIGNATURE-----
--- End Message ---
