NMAP crash with ssh-auth-methods.nse (patch included) #1077
Comments
sethrandall
changed the title
|
This was fixed in 350bbe0 |
|
@dmiller-nmap can you close the issue since you've commited the fix? :) |
|
Thanks! |
nmap-bot
pushed a commit
that referenced
this issue
May 17, 2019
This was reported, with a correct patch, back in December 2017, and I rediscovered the issue and came up with the same patch in r37532 in November 2018. Full credit should go to Seth Randall.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
When testing ssh-auth-methods.nse against non-standard ports, I forgot to specify ports and NMAP crashed. I have narrowed it down to running the script against port 139. I ran a debug and found the crash appears to be caused by a double free of session data. This appears to be due to a session pointer not being NULLed after the session is freed. Attached is a patch that appears to fix the issue.
nse_libssh2-session-null.txt
The text was updated successfully, but these errors were encountered: