[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr

bug-binutils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

From:	cvs-commit at gcc dot gnu.org
Subject:	[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in
Date:	Tue, 18 Nov 2014 14:41:49 +0000

https://sourceware.org/bugzilla/show_bug.cgi?id=17512

--- Comment #96 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot 
gnu.org> ---
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "gdb and binutils".

The branch, master has been updated
       via  6937bb54a9c3ddc7ba330bc18af76f8dbe856ac3 (commit)
      from  de84aee38c50fd306876cdbf92007afaacbfab4d (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=6937bb54a9c3ddc7ba330bc18af76f8dbe856ac3

commit 6937bb54a9c3ddc7ba330bc18af76f8dbe856ac3
Author: Nick Clifton <address@hidden>
Date:   Tue Nov 18 14:40:05 2014 +0000

    More fixes for illegal memory accesses exposed by fuzzed binaries.

        PR binutils/17512
        * peXXIgen.c (pe_print_pdata): Fail if the section's virtual size
        is larger than its real size.
        (rsrc_print_section): Fix off-by-one error checking for overflow.
        * pei-x86_64.c (pex64_bfd_print_pdata): Handle empty unwind
        sections.

        * dwarf.c (get_encoded_value): Warn and return if the encoded
        value is more than 64-bits long.
        (SAFE_BYTE_GET): Do not attempt to read more than 64-bits.
        (process_extended_line_op): Add more range checks.
        (decode_location_expression): Use the return value from
        display_block.  Add more range checks.
        (read_debug_line_header): Add range check.
        (display_debug_lines_raw): Add range checks.
        (display_debug_frames): Silently skip multiple zero terminators.
        Add range checks.
        (process_cu_tu_index): Check for non-existant or empty sections.
        Use SAFE_BYTE_GET instead of byte_get.

-----------------------------------------------------------------------

Summary of changes:
 bfd/ChangeLog      |    9 +++
 bfd/peXXigen.c     |   10 +++-
 bfd/pei-x86_64.c   |    7 ++
 binutils/ChangeLog |   16 +++++
 binutils/dwarf.c   |  162 +++++++++++++++++++++++++++++++++++++++------------
 5 files changed, 165 insertions(+), 39 deletions(-)

-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Prev in Thread]

Current Thread

[Next in Thread]

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, (continued)
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, nickc at redhat dot com, 2014/11/13
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, cherepan at mccme dot ru, 2014/11/13
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, cherepan at mccme dot ru, 2014/11/14
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, cvs-commit at gcc dot gnu.org, 2014/11/14
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, nickc at redhat dot com, 2014/11/14
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, hanno at hboeck dot de, 2014/11/14
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, cherepan at mccme dot ru, 2014/11/16
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, cherepan at mccme dot ru, 2014/11/16
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, cherepan at mccme dot ru, 2014/11/16
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, cvs-commit at gcc dot gnu.org, 2014/11/17
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, cvs-commit at gcc dot gnu.org <=
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, nickc at redhat dot com, 2014/11/18
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, hanno at hboeck dot de, 2014/11/18
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, cherepan at mccme dot ru, 2014/11/19
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, nickc at redhat dot com, 2014/11/19
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, hanno at hboeck dot de, 2014/11/19
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, nickc at redhat dot com, 2014/11/19
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, cherepan at mccme dot ru, 2014/11/20
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, cherepan at mccme dot ru, 2014/11/20
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, cvs-commit at gcc dot gnu.org, 2014/11/21
- [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in, nickc at redhat dot com, 2014/11/21

Prev by Date: [Bug ld/17592] x86-64 linker generates wrong PLT for large model
Next by Date: [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in
Previous by thread: [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in
Next by thread: [Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in
Index(es):
- Date
- Thread