Bug 1297807 - Tcpdump segfaults with --help option on ppc64
Summary: Tcpdump segfaults with --help option on ppc64
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 6
Classification: Red Hat
Component: tcpdump
Version: 6.7
Hardware: Unspecified
OS: Unspecified
medium
medium
Target Milestone: rc
: ---
Assignee: Luboš Uhliarik
QA Contact: Jaroslav Aster
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2016-01-12 14:09 UTC by Jaroslav Aster
Modified: 2016-05-10 21:15 UTC (History)
2 users (show)

Fixed In Version: tcpdump-4.0.0-9.20090921gitdf3cb4.2.el6
Doc Type: Bug Fix
Doc Text:
Clone Of:
: 1297812 (view as bug list)
Environment:
Last Closed: 2016-05-10 21:15:41 UTC
Target Upstream Version:

Attachments (Terms of Use)
Patch which fixes this issue (596 bytes, patch)
2016-01-12 14:17 UTC, Luboš Uhliarik 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2016:0831 0 normal SHIPPED_LIVE tcpdump bug fix update 2016-05-10 22:41:17 UTC

Description Jaroslav Aster 2016-01-12 14:09:44 UTC 
Description of problem:

Tcpdump segfaults with --help option on ppc64. The issue is in getopt_long function and bad parameter with list of possible options which is not properly terminated.

# ltrace tcpdump --help
(0x80086a2a40, 0, 1, 0, 0xfffffffffeff0000)                                                                                         = 0x80086a2a40
__libc_start_main(2, 0xfffd41c5498, 0xfffd41c54b0, 0xfffd41c55d8, 0x80086a03f0 <unfinished ...>
strrchr("tcpdump", '/')                                                                                                             = NULL
getopt_long(2, 0xfffd41c5498, "aAB:c:C:dDeE:fF:G:i:Ij:JKlLm:M:n"..., 0x100cf248, NULL <unfinished ...>
--- SIGSEGV (Segmentation fault) ---
+++ killed by SIGSEGV +++

Coredump appears only on ppc64, but the code is the same for all architectures, so the fact there is no segfault on the other architectures is coincidence.

Version-Release number of selected component (if applicable):

tcpdump-4.0.0-8.20090921gitdf3cb4.2.el6

How reproducible:

100% on ppc64

Steps to Reproduce:
1. Run command tpcdump --help on ppc64.

# tcpdump --help
Segmentation fault (core dumped)

Actual results:

Segfault.

Expected results:

No segfault.
Comment 1 Luboš Uhliarik 2016-01-12 14:17:21 UTC 
Created attachment 1113955 [details]
Patch which fixes this issue
Comment 7 errata-xmlrpc 2016-05-10 21:15:41 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2016-0831.html
Note You need to log in before you can comment on or make changes to this bug.