Ethereal

[Ethereal-dev] overflow in ftype-string.c
Google
 
Web Ethereal.com

Home | Introduction | Documentation | Lists | FAQ | Development | Wiki | Bugs

Main Index | Thread Index | Mailing Lists | | Date Prev | Date Next | Thread Prev | Thread Next

Ethereal-dev: February 2005

 

Hiya. 

I recently noticed (well, recent gcc/glibc pointed it out by
making tethereal crash when processing a certain packet :-) ) that 
there's a problem in string_to_repr, it does a sprintf(hex,"%02x",val), but 
doesn't reserve the space for the terminating null. The following 
fixes the issue:

--- ethereal-0.10.9/epan/ftypes/ftype-string.c~	2005-02-03 13:40:43.000000000 +0200
+++ ethereal-0.10.9/epan/ftypes/ftype-string.c	2005-02-03 13:40:43.000000000 +0200
@@ -105,7 +105,7 @@
 {
 	gchar *p, c;
 	char *bufp;
-	char hex[2];
+	char hex[3];
 
 	if (rtype == FTREPR_DFILTER) {
 		bufp = buf;

Powered by MHonArc 2.6.10

Please send support questions about Ethereal to the ethereal-users[AT]ethereal.com mailing list.
For corrections/additions/suggestions for this web page (and not Ethereal support questions), please send email to ethereal-web[AT]ethereal.com.
Last modified: Fri, November 10 2006.
"Ethereal" and the "e" logo are registered trademarks of Ethereal, Inc.