Project

General

Profile

Actions
Copy link

Bug #4948

closed

SMTP assertion triggered

Added by Philippe Antoine over 2 years ago. Updated about 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Target version:
7.0.0-beta1
Affected Versions:
6.0.4
Effort:
Difficulty:
Label:
Needs backport to 5.0, Needs backport to 6.0

Description

Getting
Assertion failed: (!((state->curr_tx == ((void*)0)))), function SMTPTransactionComplete, file app-layer-smtp.c, line 887.

Reproducer is suricata -r lola.pcap -c suricata.yaml -k none
Need to craft a Suricata-verify test out of this
The pcap comes from S-V test smtp-rset
+ fuzzpcap tcptofpc.py
+ easy hex editing to have multiple RSET in one packet
+ add a packet starting a command but not ending it (ie no end of line)
+ easy hex editing to have multiple 250 in different packets
+ fuzzpcap back to pcap

Found by CIFuzz in https://github.com/OISF/suricata/pull/6751
Not found by oss-fuzz even if it seems reachable by fuzz_sigpcap_aware...

Files

Download all files
lola.pcap (1.9 KB) lola.pcap Philippe Antoine, 01/11/2022 07:38 PM
ossfuzz.pcap (720 Bytes) ossfuzz.pcap Philippe Antoine, 01/21/2022 11:32 AM

Related issues 2 (0 open2 closed)

Copied to Suricata - Bug #4956: SMTP assertion triggeredClosedShivani BhardwajActions
Copied to Suricata - Bug #4957: SMTP assertion triggeredClosedVictor JulienActions
Actions
Copy link

Also available in: Atom PDF