[Snort-devel] Core dump in spo_xml (NEW 06/19/01)

william.c.gercken at ...350... william.c.gercken at ...350...
Tue Jun 19 13:01:43 EDT 2001


Hello,

Here is another SEGV. Source was pulled fresh this morning 06/19/01 (to get
last nights patch).

-bill

SegV:
-*> Snort! <*-
Version 1.8-beta6 (Build 26)
By Martin Roesch (roesch at ...16..., www.snort.org)    rtld_fini=0x4000df24
<_dl_fini>, stack_end=0xbffffcbc)
    at ../sysdeps/generic/libc-start.c:111

Program received signal SIGSEGV, Segmentation fault.
chunk_free (ar_ptr=0x40256ce0, p=0x86863c2) at malloc.c:3069
3069    malloc.c: No such file or directory.

Back Trace:

(gdb)bt
#0  chunk_free (ar_ptr=0x40256ce0, p=0x86863c2) at malloc.c:3069
#1  0x401b4334 in __libc_free (mem=0x86863ca) at malloc.c:3043
#2  0x8062c42 in freetag (root=0x8842d78) at spo_xml.c:1320
#3  0x8062c26 in freetag (root=0x89cb980) at spo_xml.c:1317
#4  0x8062bce in flush_data (d=0x80c18f0) at spo_xml.c:1300
#5  0x8055864 in CallAlertFuncs (p=0xbffff670,
    message=0x8685eb8 "SHELLCODE x86 NOOP", head=0x809b2b8,
event=0x8685c40)
    at rules.c:3495
#6  0x80566b8 in AlertAction (p=0xbffff670, otn=0x8685420, event=0x8685c40)
    at rules.c:4896
#7  0x8055ac5 in EvalHeader (rtn_idx=0x8380960, p=0xbffff670) at
rules.c:3755
#8  0x805597b in EvalPacket (List=0x809b2b8, mode=2, p=0xbffff670)
    at rules.c:3631
#9  0x80558e0 in Detect (p=0xbffff670) at rules.c:3550
#10 0x805573f in Preprocess (p=0xbffff670) at rules.c:3428
#11 0x804b223 in ProcessPacket (user=0x0, pkthdr=0xbffffb10, pkt=0x80ae8a8
"")
    at snort.c:509
#12 0x8072034 in pcap_read_packet ()
#13 0x8072dbf in pcap_loop ()
#14 0x804c4e7 in InterfaceThread (arg=0x0) at snort.c:1385
#15 0x804b0ef in main (argc=7, argv=0xbffffcc4) at snort.c:442
#16 0x40154b65 in __libc_start_main (main=0x804aaac <main>, argc=7,
    ubp_av=0xbffffcc4, init=0x8049f9c <_init>, fini=0x807b05c <_fini>,

Misc:

(gdb) up
#1  0x401b4334 in __libc_free (mem=0x86863ca) at malloc.c:3043
3043    in malloc.c
(gdb) up
#2  0x8062c42 in freetag (root=0x8842d78) at spo_xml.c:1320
1320        free(root->value);
(gdb) print root->value
$1 = 0x86863ca "181"
(gdb) print *root
$2 = {tags = 0, opts = 1, name = 0x88ec618 "\210\227k\bðl%@\020",
  value = 0x86863ca "181", opt = 0x875ef88, tag = 0x0}
(gdb) up
#1  0x401b4334 in __libc_free (mem=0x86863ca) at malloc.c:3043
3043    in malloc.c
(gdb) up
#2  0x8062c42 in freetag (root=0x8842d78) at spo_xml.c:1320
1320        free(root->value);
(gdb) print root->value
$1 = 0x86863ca "181"
(gdb) print *root
$2 = {tags = 0, opts = 1, name = 0x88ec618 "\210\227k\bðl%@\020",
  value = 0x86863ca "181", opt = 0x875ef88, tag = 0x0}








More information about the Snort-devel mailing list