[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Bug binutils/17531] readelf -a crashes on fuzzed samples
|
From: |
cvs-commit at gcc dot gnu.org |
|
Subject: |
[Bug binutils/17531] readelf -a crashes on fuzzed samples |
|
Date: |
Mon, 08 Dec 2014 17:53:10 +0000 |
https://sourceware.org/bugzilla/show_bug.cgi?id=17531
--- Comment #54 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot
gnu.org> ---
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "gdb and binutils".
The branch, master has been updated
via 53774b7e76dc5b3e8cc00d6f7a9d27e6c65830a9 (commit)
from 2ebecbb12e1281fca50fb0361475a01243432825 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=53774b7e76dc5b3e8cc00d6f7a9d27e6c65830a9
commit 53774b7e76dc5b3e8cc00d6f7a9d27e6c65830a9
Author: Nick Clifton <address@hidden>
Date: Mon Dec 8 17:51:46 2014 +0000
More fixes for invalid memory accesses triggered by fuzzed binaries.
PR binutils/17531
* dwarf.c (display_debug_frames): Check for a negative
augmentation data length.
(display_gdb_index): Check for invalid offsets.
* elfcomm.c (process_archive_index_and_symbols): Check for an
index number that overflows when multiplied by the ar index size.
* readelf.c (dump_ia64_unwind): Add range checks.
(slurp_ia64_unwind_table): Change to a boolean function. Add
range checks.
(process_version_sections): Add range checks.
(get_symbol_version_string): Add check for missing section
headers.
-----------------------------------------------------------------------
Summary of changes:
binutils/ChangeLog | 15 +++++++++++
binutils/dwarf.c | 70 +++++++++++++++++++++++++++++++++++++++++++++++---
binutils/elfcomm.c | 6 +++-
binutils/readelf.c | 72 +++++++++++++++++++++++++++++++++++++++-------------
4 files changed, 139 insertions(+), 24 deletions(-)
--
You are receiving this mail because:
You are on the CC list for the bug.
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cvs-commit at gcc dot gnu.org, 2014/12/01
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, nickc at redhat dot com, 2014/12/01
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cherepan at mccme dot ru, 2014/12/03
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cvs-commit at gcc dot gnu.org, 2014/12/03
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, nickc at redhat dot com, 2014/12/03
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cherepan at mccme dot ru, 2014/12/04
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cherepan at mccme dot ru, 2014/12/04
- [Bug binutils/17531] readelf -a crashes on fuzzed samples,
cvs-commit at gcc dot gnu.org <=
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, nickc at redhat dot com, 2014/12/08
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cherepan at mccme dot ru, 2014/12/18
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, cvs-commit at gcc dot gnu.org, 2014/12/22
- [Bug binutils/17531] readelf -a crashes on fuzzed samples, nickc at redhat dot com, 2014/12/22