ettercap segmentation fault after "Scan for hosts"

Confirmed.
Would have expected debug mode to be enabled by a switch, not a recompile.

i have had exactly the same issues outlined above by whoop, but only if i attempt to run program from the menu. however, the problem seems more to be an internal permissions issue in jaunty. if i run from a terminal as root with any of the interface options (T, C or G) then program runs fine.

hope that helps narrow things down. could be simpler than suspected. in the mean time, hope this helps others run this much loved pkg.

When try GTK mode. (ettercap -G)

*** glibc detected *** ettercap: realloc(): invalid next size: 0x0000000000d319c0 ***
======= Backtrace: =========
/lib/libc.so.6[0x7f7c917b9cb8]
/lib/libc.so.6[0x7f7c917bdf21]
/lib/libc.so.6(realloc+0x12e)[0x7f7c917bedae]
ettercap(str_replace+0x8a)[0x42cc7a]
ettercap(ssl_wrap_init+0x202)[0x42bc92]
ettercap(main+0x5cf)[0x42022f]
/lib/libc.so.6(__libc_start_main+0xe6)[0x7f7c917605a6]
ettercap[0x414709]
======= Memory map: ========
00400000-00475000 r-xp 00000000 08:01 1961979 /usr/sbin/ettercap
00674000-00675000 r--p 00074000 08:01 1961979 /usr/sbin/ettercap
00675000-00678000 rw-p 00075000 08:01 1961979 /usr/sbin/ettercap
00678000-00685000 rw-p 00678000 00:00 0
009e6000-00ee1000 rw-p 009e6000 00:00 0 [heap]
7f7c88000000-7f7c88021000 rw-p 7f7c88000000 00:00 0
7f7c88021000-7f7c8c000000 ---p 7f7c88021000 00:00 0
7f7c8c87e000-7f7c8c894000 r-xp 00000000 08:01 7856188 /lib/libgcc_s.so.1
7f7c8c894000-7f7c8ca94000 ---p 00016000 08:01 7856188 /lib/libgcc_s.so.1
7f7c8ca94000-7f7c8ca95000 r--p 00016000 08:01 7856188 /lib/libgcc_s.so.1
7f7c8ca95000-7f7c8ca96000 rw-p 00017000 08:01 7856188 /lib/libgcc_s.so.1
7f7c8ca96000-7f7c8ce76000 rw-s 00000000 00:04 5515658 socket:[5515658]
7f7c8ce76000-7f7c8ce85000 r-xp 00000000 08:01 7856165 /lib/libbz2.so.1.0.4
7f7c8ce85000-7f7c8d085000 ---p 0000f000 08:01 7856165 /lib/libbz2.so.1.0.4
7f7c8d085000-7f7c8d086000 r--p 0000f000 08:01 7856165 /lib/libbz2.so.1.0.4
7f7c8d086000-7f7c8d087000 rw-p 00010000 08:01 7856165 /lib/libbz2.so.1.0.4
7f7c8d087000-7f7c8d1da000 r-xp 00000000 08:01 1961363 /usr/lib/libxml2.so.2.6.32
7f7c8d1da000-7f7c8d3d9000 ---p 00153000 08:01 1961363 /usr/lib/libxml2.so.2.6.32
7f7c8d3d9000-7f7c8d3e1000 r--p 00152000 08:01 1961363 /usr/lib/libxml2.so.2.6.32
7f7c8d3e1000-7f7c8d3e3000 rw-p 0015a000 08:01 1961363 /usr/lib/libxml2.so.2.6.32
7f7c8d3e3000-7f7c8d3e4000 rw-p 7f7c8d3e3000 00:00 0
7f7c8d3e4000-7f7c8d41a000 r-xp 00000000 08:01 1960578 /usr/lib/libcroco-0.6.so.3.0.1
7f7c8d41a000-7f7c8d619000 ---p 00036000 08:01 1960578 /usr/lib/libcroco-0.6.so.3.0.1
7f7c8d619000-7f7c8d61d000 rw-p 00035000 08:01 1960578 /usr/lib/libcroco-0.6.so.3.0.1
7f7c8d61d000-7f7c8d656000 r-xp 00000000 08:01 1960839 /usr/lib/libgsf-1.so.114.0.11
7f7c8d656000-7f7c8d856000 ---p 00039000 08:01 1960839 /usr/lib/libgsf-1.so.114.0.11
7f7c8d856000-7f7c8d859000 r--p 00039000 08:01 1960839 /usr/lib/libgsf-1.so.114.0.11
7f7c8d859000-7f7c8d85a000 rw-p 0003c000 08:01 1960839 /usr/lib/libgsf-1.so.114.0.11
7f7c8d85a000-7f7c8d85c000 rw-p 7f7c8d85a000 00:00 0
7f7c8d85c000-7f7c8d891000 r-xp 00000000 08:01 1961198 /usr/lib/librsvg-2.so.2.26.0
7f7c8d891000-7f7c8da91000 ---p 00035000 08:01 1961198 ...

The problem is in a wrong casting that doesn't works under 64bit architecture.

I attach a patch to fix it

I also put the fixed version (for jaunty and karmic) in my ppa
http://blog.redaelli.eu/2009/06/23/ettercap-bugfixing

I attach the patch in the usual debdiff format ready to be included in ubuntu :)

Hi Timothy,

Since jaunty has been frozen one now has to follow the SRU process to get the fix into jaunty. I noticed that this fix has not made it into karmic, if possible can you attach the debdiff for karmic and we can go from there.

thanks
chuck

According to the debian bug report, the issue was resolved with 1:0.7.3-1.3 version, which was released in Karmic. Please re-open it's the issue is still here.

I've downloaded ettercap and it seems problem persists. I'm getting segmentation fault.
My ettercap version is 1:0.7.3-1.4ubuntu1.

I can use it with Curses interface, but not gtk. When installing ettercap-gtk, ettercap package is removed(ettercap-common not), therefore not even Curses works.

Im also using the 1:0.7.3-1.4ubuntu1 out of the karmic repos and this problem persists. I get the same backtrace as comment #4 posted.

AMD64 bit, Ubuntu 9.10 Karmic - I'd be happy to provide any more info needed.

i also get the realloc segfault error on amd64:

*** glibc detected *** ettercap: realloc(): invalid next size:
0x0000000002347f00 ***
======= Backtrace: =========
/lib/libc.so.6[0x7fbef387bdd6]
/lib/libc.so.6[0x7fbef3881254]
/lib/libc.so.6(realloc+0xf0)[0x7fbef38815b0]
ettercap(str_replace+0x92)[0x42c9f2]
ettercap(ssl_wrap_init+0x1f6)[0x42b9c6]
ettercap(main+0x5bf)[0x4200ff]
/lib/libc.so.6(__libc_start_main+0xfd)[0x7fbef3824abd]
ettercap[0x414509]
======= Memory map: ========
00400000-00475000 r-xp 00000000 fc:02 222558
/usr/sbin/ettercap
00674000-00675000 r--p 00074000 fc:02 222558
/usr/sbin/ettercap
00675000-00678000 rw-p 00075000 fc:02 222558
/usr/sbin/ettercap
00678000-00685000 rw-p 00000000 00:00 0
01fc7000-02392000 rw-p 00000000 00:00 0 [heap]
7fbee8000000-7fbee8021000 rw-p 00000000 00:00 0

...

the bug is still present in jaunty

(sorry I mean LUCID)

Yes, It is still present in Lucid on my Dell 64 bits.

I'm *not* experiencing this bug anymore in Karmic nor Lucid (both x86-64). If I can provide any useful information about my systems just ask.

I have this problem with ettercap-gtk 1:0.7.3-1.4ubuntu1 (LUCID)

http://bazaar.launchpad.net/~ubuntu-branches/ubuntu/lucid/ettercap/lucid/annotate/head:/src/protocols/ec_tcp.c

and I don't see the patch applied!

As far as I see the patch has not been included in Lucid -- setting bug status back to Triaged.

Where did you see the patch isn't in Lucid?

Sorry, lack of sleep and impatience -- I didn't see the patch in the patchsys. However, the Scan for hosts feature in the GUI still randomly segfaults.

I have the same problem in my 64bit ubuntu lucid, if you could reproduce this bug please fill a new one!

This bug should rest "fix released" cause the patch is in the ubuntu package.

Agreed. Let's move off to a new bug.

On Apr 24, 2010, at 4:55 PM, LocutusOfBorg wrote:

> I have the same problem in my 64bit ubuntu lucid, if you could reproduce
> this bug please fill a new one!
>
> This bug should rest "fix released" cause the patch is in the ubuntu
> package.
>
> ** Changed in: ettercap (Ubuntu)
> Status: Triaged => Fix Released
>
> --
> ettercap segmentation fault after "Scan for hosts"
> https://bugs.launchpad.net/bugs/364917
> You received this bug notification because you are a direct subscriber
> of the bug.

Bug present in 10.04 Lucid Lynx 32 bit. I got ettercap from the Software Centre.

Frank is this bug present _every_ time you scan for hosts?

yes, always for me in 10.04 32bit

@Frank @ruben0909 since your bug seems to be unrelated with this one, please open a new one and link here the new bug (seems to be unrelated because the patch that fixed this amd64 bug is in the ettercap deb file)

Can you try my experimental version built without pthread in my ppa?
https://launchpad.net/~timothy-redaelli/+archive/drizzt/+packages

Thanks Timothy, you version worked and fixed all the issues I had with ettercap before on Ubuntu 10.4. :D I am a happy man right now.

I'm using maverick and still happens.

I will send the debdiff for maverick later

I attach the patch in the usual debdiff format ready to be included in ubuntu :)

well... i'm a young programmer new to Linux...
but wasnt this suposed to be included into the software center?
i downloaded in the software center ... and it crashes after scanning for hosts.
amd 64.

Try this package, https://launchpad.net/~timothy-redaelli/+archive/drizzt/+packages

the fix isn't included in the official repository yet

yep it scans with that package.

How do I download the package? Which want should I downoad? (sorry, I am very new to ubuntu)

one*

Package files

    * ettercap-common_0.7.3-1.4ubuntu1drizzt1_amd64.deb (312.9 KiB)
    * ettercap-common_0.7.3-1.4ubuntu1drizzt1_i386.deb (296.4 KiB)
    * ettercap-gtk_0.7.3-1.4ubuntu1drizzt1_amd64.deb (246.1 KiB)
    * ettercap-gtk_0.7.3-1.4ubuntu1drizzt1_i386.deb (226.9 KiB)
    * ettercap_0.7.3-1.4ubuntu1drizzt1.diff.gz (7.5 KiB)
    * ettercap_0.7.3-1.4ubuntu1drizzt1.dsc (1.2 KiB)
    * ettercap_0.7.3-1.4ubuntu1drizzt1_amd64.deb (205.3 KiB)
    * ettercap_0.7.3-1.4ubuntu1drizzt1_i386.deb (188.9 KiB)
    * ettercap_0.7.3.orig.tar.gz (1.1 MiB)

I am using ubuntu 10.10 32bit.

Some of them I can open it in Ubuntu software centre but it's stated that it has been installed.

Thank you in advanced.

ok try this in your bash:

sudo mkdir ettercap
cd ettercap
wget https://launchpad.net/~timothy-redaelli/+archive/drizzt/+files/ettercap-common_0.7.3-1.4ubuntu1drizzt1_i386.deb
wget https://launchpad.net/~timothy-redaelli/+archive/drizzt/+files/ettercap-gtk_0.7.3-1.4ubuntu1drizzt1_i386.deb
wget https://launchpad.net/~timothy-redaelli/+archive/drizzt/+files/ettercap_0.7.3-1.4ubuntu1drizzt1_i386.deb
sudo dpkg -i *.deb
cd ..
sudo rm ettercap -Rf

for creating the directory ettercap
go into the directory
wget stands for downloading a file from internet
(you have to download the three files in order to make it work)
dpkg -i is useful to manually install a package and *.deb stands for install every deb files in this directory)
rm stands for remove directory ettercap

the other way is to add the ppa repository in synaptic (in the options menu) and update the package by clicking the reload button and the apply one.

this should be easy but I'm not sure about the correctness of it since I prevere the command line way... :)

regards

Starting it from the command line in the format sudo ettercap -G -i [interface] worked for me.

@Timothy your patch is included in the ubuntu repo?

This bug is fixed in the current Natty development branch

Please anybody could test the natty release of ettercap and tell if the bug is really fixed?http://packages.ubuntu.com/natty/ettercap

thanks

(I confirm the patch fixes the bug)

@LocutusOfBorg
I can't find any new patch of ettercap under natty =>http://changelogs.ubuntu.com/changelogs/pool/universe/e/ettercap/ettercap_0.7.3-2.1ubuntu1/changelog

The problem is STILL present!
It does not show up for other reasons (maybe gtk version?), but it can show up in later versions since the bug is STILL present.

See lp #588007 for a proper fix

If you read the changelog carefully you will find the patch applied, the first version of this patch was not so good, so the debian team had modified into a new one
ettercap (1:0.7.3-2.1) unstable; urgency=low

  * Non-maintainer upload.
  * 01_pointers_and_ints_dont_mix.diff: Cast to u_char* rather than
    simply removing the cast. Updated patch by Robert Edmonds.
    (Closes: #521857)

http://bazaar.launchpad.net/~ubuntu-branches/ubuntu/natty/ettercap/natty/revision/15#debian/patches/01_pointers_and_ints_dont_mix.diff

your patch seems to insert a new bug, please see https://bugs.launchpad.net/ubuntu/+source/ettercap/+bug/624547 and http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=521857

Is this bug really fixed? I'm using Ubuntu 11.10 in x86_64 fully updated and still getting the same crash...

Regards

could you try 0.7.4 from precise repository?

I am using ettercap-gtk 1:0.7.3-2.1 and it still crashes...

please open a new bug with ubuntu-bug ettercap