Andrea Barisani reports a denial of service in tcpick (gdb) run -a -Y -yP -n -i eth0 "not port 22" Starting program: ./tcpick-0.2.1/src/tcpick -a -yP -n -i eth0 "not port 22" Starting tcpick 0.2.1 at 2006-03-08 16:27 CET ... Program received signal SIGSEGV, Segmentation fault. out_p (out=0xb7f8d5e0, buf=0x808b000 <Address 0x808b000 out of bounds>, buflen=-133301) a t display.c:216 216 if( ( isascii( CHAR ) && !iscntrl( CHAR ) ) || (gdb) bt #0 out_p (out=0xb7f8d5e0, buf=0x808b000 <Address 0x808b000 out of bounds>, buflen=-13330 1) at display.c:216 #1 0x0804aa26 in got_packet (useless=0x0, hdr=0xbf9a6e60, packet=0x806a722 "") at loop.c :119 #2 0x0804c245 in pcap_read_linux () #3 0x0804d337 in pcap_loop () #4 0x0804b09f in main (argc=7, argv=0xbf9a6fe4) at tcpick.c:264 (gdb)
Created attachment 81691 [details] pcap demo
adding dragonheart, a recent bumper
This is CVE-2006-0048
Upstream email doesn't work, sending to their public ML will open this bug...
This is now public (just posted to tcpick-project ml).
Anyone feels like designing a patch for this or should we just mask it ?
masked, lets have a maskglsa vote
No mask GLSA for a B3, that's policy. Keeping an enhancement to remember to get rid of it sometimes.
Treecleaners - can you add this to your list of removals please.
Pmasked
# Christian Heim <phreak@gentoo.org> (04 Nov 2006) # masking the following packages for treecleaners and bugs # Pending removal Dec 04th 2006: # #117662 - media-libs/janus # #125491 - net-analyzer/tcpick media-libs/janus net-analyzer/tcpick @phreak - about time to die for this package...
(In reply to comment #11) > net-analyzer/tcpick Just got punted.