Closed dg1rtf closed 1 year ago
openvas-scanner shows log entries (/opt/gvm/var/log/gvm/openvas.log) with wrong json strings (buffer overflow?) like lib misc:WARNING:2023-07-12 06h53.27 utc:330787:edc1ddcc-2ef9-4f75-affb-a38be6d4e710: ipc_data_from_json: Unable to parse json ({"type":1,"user-agent":"Mozilla/5.0 [en] (X11, U; OpenVAS-VT 22.7.2~git-843e3332-main)"}1). Reason: :1:89: Parse error: unexpected number 1', expected end of file lib misc:WARNING:2023-07-12 06h53.27 utc:330787:edc1ddcc-2ef9-4f75-affb-a38be6d4e710: ipc_data_from_json: Unable to parse json ({"type":1,"user-agent":"Mozilla/5.0 [en] (X11, U; OpenVAS-VT 22.7.2~git-843e3332-main)"}!). Reason: <data>:1:89: Parse error: unexpected character!', expected end of file
1', expected end of file lib misc:WARNING:2023-07-12 06h53.27 utc:330787:edc1ddcc-2ef9-4f75-affb-a38be6d4e710: ipc_data_from_json: Unable to parse json ({"type":1,"user-agent":"Mozilla/5.0 [en] (X11, U; OpenVAS-VT 22.7.2~git-843e3332-main)"}!). Reason: <data>:1:89: Parse error: unexpected character
gsa: (gsad --version) Greenbone Security Assistant 22.05.2
gvm: (gvmd --version) gvmd --version Greenbone Vulnerability Manager 22.5.5~dev1 Manager DB revision 255
openvas: (openvas --version) OpenVAS 22.7.2~git-843e3332-main GIT revision ~git-843e3332-main gvm-libs 22.6.3~git-a23e090-main
gvm-libs:
openvas-smb:
ospd-openvas: (ospd-openvas --version) OSP Server for openvas: 22.5.3 OSP: 22.5.3 OSPd OpenVAS: 22.5.3
Operating system: Linux gvm 5.10.0-23-amd64 #1 SMP Debian 5.10.179-1 (2023-05-12) x86_64 GNU/Linux PRETTY_NAME="Debian GNU/Linux 11 (bullseye)" NAME="Debian GNU/Linux" VERSION_ID="11" VERSION="11 (bullseye)" VERSION_CODENAME=bullseye ID=debian
Installation method / source: (packages, source installation) Installation from source into /opt/gvm
Hello @dg1rtf, thanks for reporting! Did it happen just once or is it something you can reproduce ? If you can reproduce it, please share the configuration, and if you have set the the user agent somewhere.
Expected behavior
Actual behavior
openvas-scanner shows log entries (/opt/gvm/var/log/gvm/openvas.log) with wrong json strings (buffer overflow?) like lib misc:WARNING:2023-07-12 06h53.27 utc:330787:edc1ddcc-2ef9-4f75-affb-a38be6d4e710: ipc_data_from_json: Unable to parse json ({"type":1,"user-agent":"Mozilla/5.0 [en] (X11, U; OpenVAS-VT 22.7.2~git-843e3332-main)"}1). Reason: :1:89: Parse error: unexpected number
1', expected end of file lib misc:WARNING:2023-07-12 06h53.27 utc:330787:edc1ddcc-2ef9-4f75-affb-a38be6d4e710: ipc_data_from_json: Unable to parse json ({"type":1,"user-agent":"Mozilla/5.0 [en] (X11, U; OpenVAS-VT 22.7.2~git-843e3332-main)"}!). Reason: <data>:1:89: Parse error: unexpected character
!', expected end of fileGVM versions
gsa: (gsad --version) Greenbone Security Assistant 22.05.2
gvm: (gvmd --version) gvmd --version Greenbone Vulnerability Manager 22.5.5~dev1 Manager DB revision 255
openvas: (openvas --version) OpenVAS 22.7.2~git-843e3332-main GIT revision ~git-843e3332-main gvm-libs 22.6.3~git-a23e090-main
gvm-libs:
openvas-smb:
ospd-openvas: (ospd-openvas --version) OSP Server for openvas: 22.5.3 OSP: 22.5.3 OSPd OpenVAS: 22.5.3
Environment
Operating system: Linux gvm 5.10.0-23-amd64 #1 SMP Debian 5.10.179-1 (2023-05-12) x86_64 GNU/Linux PRETTY_NAME="Debian GNU/Linux 11 (bullseye)" NAME="Debian GNU/Linux" VERSION_ID="11" VERSION="11 (bullseye)" VERSION_CODENAME=bullseye ID=debian
Installation method / source: (packages, source installation) Installation from source into /opt/gvm
Logfiles