Bug 154589
Summary: | Malformed IAX2 packet crashes ethereal | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Armijn Hemel <armijn> | ||||||
Component: | ethereal | Assignee: | Radek Vokál <rvokal> | ||||||
Status: | CLOSED UPSTREAM | QA Contact: | |||||||
Severity: | medium | Docs Contact: | |||||||
Priority: | medium | ||||||||
Version: | 3 | ||||||||
Target Milestone: | --- | ||||||||
Target Release: | --- | ||||||||
Hardware: | i386 | ||||||||
OS: | Linux | ||||||||
Whiteboard: | |||||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||||
Doc Text: | Story Points: | --- | |||||||
Clone Of: | Environment: | ||||||||
Last Closed: | 2005-04-27 09:04:26 UTC | Type: | --- | ||||||
Regression: | --- | Mount Type: | --- | ||||||
Documentation: | --- | CRM: | |||||||
Verified Versions: | Category: | --- | |||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||
Embargoed: | |||||||||
Attachments: |
|
Description
Armijn Hemel
2005-04-12 20:38:36 UTC
Created attachment 113057 [details]
ethereal dump file with malformed IAX2 packet that crashes ethereal
This file contains the packet that crashes ethereal. As said in the bugreport
it is malformed on purpose to see how Asterisk reacts. After the header of the
packet there is an information element. The first byte in the information
element says the data is about which "capabilities" (codecs) the source program
can do, the
second byte describes the length of the data, but there is no actual data in
the packet itself.
Created attachment 113058 [details]
Mono program to generate faulty IAX2 packet that crashes Ethereal
The attached program (written in C#, run it with Mono) sends a faulty packet to
an Asterisk server. Before running it the IP address of the server should be
changed (now 10.0.0.152). Don't look at the rest of the code, it's pretty ugly
and not for production use ;-)) (and that's an understatement!). If C# is not
your cup of tea, it is trivial to rewrite it to any other language.
The latest subversion version of Ethereal contains a patch that "fixes" this bug. Even though there is a "dissector bug", it is workable. I think this bug can belowered from "high" to "normal". There's a new ethereal version comming out soon, the will be included there. |