nmap v4.76 crashing when used with send-ip option

Bug #381061 reported by DavidM
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
nmap (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

Binary package hint: nmap

Hi,

I am working on a ruby project named GNMS which calls nmap
When the command below is used
 nmap --send-ip -PE -sP -n 128.0.0.0/24
I got a Segmentation Fault and the error below in messages log file
 kernel: [ 9415.405005] nmap[26117]: segfault at 0 ip 0808e38a sp bfd8cc20 error 4 in nmap[8048000+c6000]

The problem does not occur in Nmap 4.85BETA9

Regards,
david

Revision history for this message
Jeff Enns (cyberpenguinks) wrote :

Sorry, we need more information about this bug as I wasn't able to reproduce the problem. What version of Ubuntu are you running? Are you running this sudo or as a real user? Can you run the command you list outside of the process and does it work? Thank you for more information!

Changed in nmap (Ubuntu):
status: New → Incomplete
Revision history for this message
DavidM (david-maciejak) wrote :

oh sorry I thought I reported the bug in jaunty part.
So for the details, I am running an up to date 9.04

more /etc/lsb-release
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=9.04
DISTRIB_CODENAME=jaunty
DISTRIB_DESCRIPTION="Ubuntu 9.04"

I already sent you the poc command, when I run it as root under bash i got the seg fault.

Revision history for this message
Jeff Enns (cyberpenguinks) wrote :

Could you, please, attach a backtrace (Instructions can be found here: https://wiki.ubuntu.com/Backtrace)? Let me know if need further assistance running the backtrace. Thank you for reporting this bug.

Revision history for this message
DavidM (david-maciejak) wrote :

yeah, that's what I tried at the first time, but did not have the debugging symbols, hope it helps ...

Revision history for this message
Jeff Enns (cyberpenguinks) wrote :

Sorry, my fault. You need to install the version with debug symbols left in. Please, see this site on how to install it: https://wiki.ubuntu.com/DebuggingProgramCrash. Also, make sure to execute /usr/lib/debug/usr/bin/nmap rather than /usr/bin/nmap. The latter has the debug symbols and the former is the original stripped version. Thank you!

Revision history for this message
DavidM (david-maciejak) wrote :

I can't find any nmap dbg or dbgsym package to install, please help.

Revision history for this message
Jeff Enns (cyberpenguinks) wrote :

Make sure you have the following in your /etc/apt/sources.list:

deb http://ddebs.ubuntu.com jaunty main restricted universe multiverse

Also, make sure the gpg key was successfully imported. Then you can:

sudo apt-get update

If you get errors at this point, please, double check the pgp key import. Once you update your apt cache you should be able to install it:

sudo apt-get install nmap-dbgsym=4.76-0ubuntu4

Thank you for your effort on this matter and thank you for submitting your bug report. Let me know if I can assist anymore. Thanks.

Revision history for this message
DavidM (david-maciejak) wrote :

Jeff, thanks for your help. I was able to install the debug version. But I can't execute it !
See below:

#/usr/lib/debug/usr/bin/nmap
bash: /usr/lib/debug/usr/bin/nmap: cannot execute binary file

Any ideas ?

Revision history for this message
Jeff Enns (cyberpenguinks) wrote :

OK, lets try this. If you don't have strace installed, you can do the following:

sudo apt-get install strace

Then run:

sudo strace -Ff -tt nmap --send-ip -PE -sP -n 128.0.0.0/24 2>&1 | tee strace-nmap.log

If that works, post the log, please. Sorry this has become such a chore! Thank you for your continued effort to make Ubuntu better!

Revision history for this message
DavidM (david-maciejak) wrote :

No problem, I did the strace for the 2 binaries, see enclosed.

Revision history for this message
DavidM (david-maciejak) wrote :
Revision history for this message
Jeff Enns (cyberpenguinks) wrote :

Hopefully the strace output will be enough for the developers. Thank you for submitting this bug.

Changed in nmap (Ubuntu):
status: Incomplete → Confirmed
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.