[Snort-devel] Segmentation fart, Version 1.8-beta5 (Build 24)

Phil Wood cpw at ...86...
Mon May 21 13:17:07 EDT 2001


  -*> Snort! <*-
  Version 1.8-beta5 (Build 24)
  By Martin Roesch (roesch at ...16..., www.snort.org)
  
  WARNING: rpc_decode calculated bad length: 1431520594
  WARNING: rpc_decode calculated bad length: 1213486160
  WARNING: rpc_decode calculated bad length: 842149920
  WARNING: rpc_decode calculated bad length: 842346541
  WARNING: rpc_decode calculated bad length: 842149920
  WARNING: rpc_decode calculated bad length: 842346528
  WARNING: rpc_decode calculated bad length: 842346528
  WARNING: rpc_decode calculated bad length: 859124768
  WARNING: rpc_decode calculated bad length: 842346528
  WARNING: rpc_decode calculated bad length: 842346528
  WARNING: rpc_decode calculated bad length: 842150176
  WARNING: rpc_decode calculated bad length: 842346528
  max nodes reach, data is not inserted 
  
  Program terminated with signal 11, Segmentation fault.
  Reading symbols from /usr/lib/libz.so.1...done.
  Reading symbols from /lib/libm.so.6...done.
  Reading symbols from /lib/libnsl.so.1...done.
  Reading symbols from /usr/lib/mysql/libmysqlclient.so.6...done.
  Reading symbols from /lib/libc.so.6...done.
  Reading symbols from /lib/libcrypt.so.1...done.
  Reading symbols from /lib/ld-linux.so.2...done.
  Reading symbols from /lib/libnss_files.so.2...done.
  Reading symbols from /lib/libnss_nisplus.so.2...done.
  Reading symbols from /lib/libnss_nis.so.2...done.
  Reading symbols from /lib/libnss_dns.so.2...done.
  Reading symbols from /lib/libresolv.so.2...done.
  #0  0x807d3ce in NewStream (bin=147395351) at spp_tcp_stream3.c:1570
  1570      nptr->nsptr = (TcpStream3Session *) calloc(sizeof(TcpStream3Session), 
  
  (gdb) list
  1565
  1566      inserttree(bin, &rootnode,StreamData.treedepth);
  1567
  1568      nptr = findnode(rootnode, bin);
  1569
  1570      nptr->nsptr = (TcpStream3Session *) calloc(sizeof(TcpStream3Session), 
  1571                                                 sizeof(char));
  1572
  1573      if(nptr->nsptr == NULL)
  1574      {
  (gdb) print nptr
  $1 = (struct Node *) 0x0
  (gdb) print bin
  $1 = 0
  (gdb) print rootnode
  $2 = (struct Node *) 0x8577210
  (gdb) print StreamData.treedepth
  $3 = 13
  (gdb) print *rootnode
  $5 = {nodes = 13, balance = 1, data = 141733239, nsptr = 0x8577230, 
    left = 0x8577b48, right = 0x8588b10}

Fyi,

Phil

PS: There were no relevant libpcap captures in the '-b' file (unless they were
in some flush buffer).




More information about the Snort-devel mailing list