</para>
</listitem>
+ <listitem>
+ <para>
+ Defining a display filter macro with no arguments would make
+ Wireshark crash.
+ <!-- Fixed in r21664 -->
+ <!-- CID 232 -->
+ </para>
+ <para>Versions affected: 0.99.5</para>
+ <para>
+ <!-- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-????">CVE-2007-????</ulink> -->
+ </para>
+ </listitem>
+
+ <listitem>
+ <para>
+ Wireshark could loop excessively while reading a malformed SSL
+ packet.
+ <!-- Fixed in r? -->
+ (Bug <ulink url="http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1582">1582</ulink>)
+ </para>
+ <para>Versions affected: ?</para>
+ <para>
+ <!-- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-????">CVE-2007-????</ulink> -->
+ </para>
+ </listitem>
+
</itemizedlist>
</para>
The following features are new (or have been significantly updated)
since the last release:
+ <!--
+ - HTTP object export
+ - Delta times
+ - Code cleanup
+ -->
+
</para>
</section>
#include <epan/tap.h>
#include <epan/filesystem.h>
#include <epan/report_err.h>
+#include <epan/expert.h>
#include "packet-ssl.h"
#include "packet-ssl-utils.h"
SslDecryptSession *conv_data, guint8 content_type);
-static void dissect_ssl3_hnd_cli_hello(tvbuff_t *tvb,
+static void dissect_ssl3_hnd_cli_hello(tvbuff_t *tvb, packet_info *pinfo,
proto_tree *tree,
guint32 offset, guint32 length,
SslDecryptSession* ssl);
break;
case SSL_HND_CLIENT_HELLO:
- dissect_ssl3_hnd_cli_hello(tvb, ssl_hand_tree, offset, length, ssl);
+ dissect_ssl3_hnd_cli_hello(tvb, pinfo, ssl_hand_tree, offset, length, ssl);
break;
case SSL_HND_SERVER_HELLO:
}
static void
-dissect_ssl3_hnd_cli_hello(tvbuff_t *tvb,
+dissect_ssl3_hnd_cli_hello(tvbuff_t *tvb, packet_info *pinfo,
proto_tree *tree, guint32 offset, guint32 length,
SslDecryptSession*ssl)
{
*/
proto_tree *ti;
proto_tree *cs_tree;
- guint16 cipher_suite_length;
+ gint cipher_suite_length;
guint8 compression_methods_length;
guint8 compression_method;
guint16 start_offset;
+
cipher_suite_length = 0;
compression_methods_length = 0;
start_offset = offset;
ti = proto_tree_add_none_format(tree,
hf_ssl_handshake_cipher_suites,
tvb, offset, cipher_suite_length,
- "Cipher Suites (%u suite%s)",
+ "Cipher Suites (%d suite%s)",
cipher_suite_length / 2,
plurality(cipher_suite_length/2, "", "s"));
+ if (cipher_suite_length % 2) {
+ proto_tree_add_text(tree, tvb, offset, 2,
+ "Invalid cipher suite length: %d", cipher_suite_length);
+ expert_add_info_format(pinfo, NULL, PI_MALFORMED, PI_ERROR,
+ "Cipher suite length (%d) must be a multiple of 2",
+ cipher_suite_length);
+ return;
+ }
/* make this a subtree */
cs_tree = proto_item_add_subtree(ti, ett_ssl_cipher_suites);
git.samba.org / metze / wireshark / wip.git / commitdiff