[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

[hanno at hboeck dot de]

https://sourceware.org/bugzilla/show_bug.cgi?id=17512

--- Comment #27 from Hanno Boeck <hanno at hboeck dot de> ---
Okay, here's the super-step-by-step-instruction to reproduce the UAF:
git clone git://sourceware.org/git/binutils-gdb.git
cd binutils-gdb/
./configure --disable-shared CFLAGS="-fsanitize=address -g"
make
binutils/objdump -x [path_to]/objdump-elf-crasher [path_to]/strings-bfd-badfree

According to asan the use-after-free happens in line 2110/elf.c, this is the
code:
    sections_being_created [shindex] = FALSE;

-- 
You are receiving this mail because:
You are on the CC list for the bug.