[Bug binutils/17531] readelf -a crashes on fuzzed samples

bug-binutils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug binutils/17531] readelf -a crashes on fuzzed samples

From:	cvs-commit at gcc dot gnu.org
Subject:	[Bug binutils/17531] readelf -a crashes on fuzzed samples
Date:	Tue, 11 Nov 2014 20:51:40 +0000

https://sourceware.org/bugzilla/show_bug.cgi?id=17531

--- Comment #26 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot 
gnu.org> ---
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "gdb and binutils".

The branch, master has been updated
       via  8b73c35699b4b1da558be29ac3c90aee0e0e1e49 (commit)
      from  51b26797b4a05304e4d00e2fd77810e38147bb7f (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=8b73c35699b4b1da558be29ac3c90aee0e0e1e49

commit 8b73c35699b4b1da558be29ac3c90aee0e0e1e49
Author: Nick Clifton <address@hidden>
Date:   Tue Nov 11 20:50:03 2014 +0000

    Fix invalid memory accesses for more corrupt binary files.

        PR binutils/17531
        * binutils/readelf.c (dynamic_nent): Change type to size_t.
        (slurp_rela_relocs): Use size_t type for nrelas.
        (slurp_rel_relocs): Likewise.
        (get_program_headers): Improve out of memory error message.
        (get_32bit_section_headers): Likewise.
        (get_32bit_section_headers): Likewise.
        (get_64bit_section_headers): Likewise.
        (get_32bit_elf_symbols): Likewise.
        (get_64bit_elf_symbols): Likewise.
        (process_section_groups): Likewise.
        (get_32bit_dynamic_section): Likewise.
        (get_64bit_dynamic_section): Likewise.
        (process_dynamic_section): Likewise.
        (process_version_sections): Likewise.
        (get_symbol_index_type): Likewise.
        (process_mips_specific): Likewise.
        (process_corefile_note_segment): Likewise.
        (process_version_sections): Use size_t type for total.
        (get_dynamic_data): Change type of number parameter to size_t.
        Improve out of memory error messages.
        (process_symbol_table): Change type of nbuckets and nchains to
        size_t.  Skip processing of sections headers if there are none.
        Improve out of memory error messages.

-----------------------------------------------------------------------

Summary of changes:
 binutils/ChangeLog |   27 ++++++++++++++++
 binutils/readelf.c |   87 +++++++++++++++++++++++++++++----------------------
 2 files changed, 76 insertions(+), 38 deletions(-)

-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Prev in Thread]

Current Thread

[Next in Thread]

[Bug binutils/17531] readelf -a crashes on fuzzed samples, (continued)
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cherepan at mccme dot ru, 2014/11/09
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cherepan at mccme dot ru, 2014/11/09
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cherepan at mccme dot ru, 2014/11/09
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, nickc at redhat dot com, 2014/11/10
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cvs-commit at gcc dot gnu.org, 2014/11/10
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cherepan at mccme dot ru, 2014/11/11
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cvs-commit at gcc dot gnu.org, 2014/11/11
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, nickc at redhat dot com, 2014/11/11
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cherepan at mccme dot ru, 2014/11/11
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cherepan at mccme dot ru, 2014/11/11
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cvs-commit at gcc dot gnu.org <=
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, nickc at redhat dot com, 2014/11/11
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cherepan at mccme dot ru, 2014/11/12
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cvs-commit at gcc dot gnu.org, 2014/11/13
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, nickc at redhat dot com, 2014/11/13
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cherepan at mccme dot ru, 2014/11/16
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cvs-commit at gcc dot gnu.org, 2014/11/17
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, espen at grindhaug dot org, 2014/11/17
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cvs-commit at gcc dot gnu.org, 2014/11/18
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, nickc at redhat dot com, 2014/11/18
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, espen at grindhaug dot org, 2014/11/20

Prev by Date: [Bug gold/17578] New: Confusing "requires executable stack" warning from gold
Next by Date: [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in
Previous by thread: [Bug binutils/17531] readelf -a crashes on fuzzed samples
Next by thread: [Bug binutils/17531] readelf -a crashes on fuzzed samples
Index(es):
- Date
- Thread