bug-binutils
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

From: cherepan at mccme dot ru
Subject: [Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples
Date: Tue, 17 Feb 2015 20:53:19 +0000 
https://sourceware.org/bugzilla/show_bug.cgi?id=17512

--- Comment #209 from Alexander Cherepanov <cherepan at mccme dot ru> ---
Created attachment 8136
  --> https://sourceware.org/bugzilla/attachment.cgi?id=8136&action=edit
Problems with `strip-new -o /dev/null` (32-bit)

valgrind

Files: 14
Errors:
      5 Invalid read of size ...
      9 Syscall param write(buf) points to uninitialised byte(s)

----------------------------------------------------------------------

ubsan

Files: 12
Errors:
      1 ../../../source/bfd/coffcode.h:3435:57: runtime error: negation of ...
cannot be represented in type 'int'; cast to an unsigned type to negate this
value to itself
      1 ../../../source/bfd/elf.c:2761:40: runtime error: shift exponent ... is
too large for 64-bit type 'long long unsigned int'
      1 ../../../source/bfd/elf.c:4694:34: runtime error: shift exponent ... is
too large for 64-bit type 'long long unsigned int'
      1 ../../../source/bfd/elf.c:4831:30: runtime error: shift exponent ... is
too large for 64-bit type 'long long unsigned int'
      1 ../../../source/bfd/elf.c:5042:10: runtime error: signed integer
overflow: ... + ... cannot be represented in type 'long long int'
      1 ../../../source/bfd/elf.c:5045:10: runtime error: signed integer
overflow: ... + ... cannot be represented in type 'long long int'
      1 ../../../source/bfd/elf.c:5224:38: runtime error: signed integer
overflow: ... - ... cannot be represented in type 'long long int'
      1 ../../../source/bfd/mach-o.c:2695:18: runtime error: shift exponent ...
is negative
      1 ../../../source/bfd/mach-o.c:2695:18: runtime error: shift exponent ...
is too large for 64-bit type 'long long int'
      1 ../../../source/bfd/mach-o.c:2701:24: runtime error: shift exponent ...
is negative
      1 ../../../source/bfd/mach-o.c:2701:24: runtime error: shift exponent ...
is too large for 64-bit type 'long long int'
      1 ../../../source/bfd/mach-o.c:2702:32: runtime error: shift exponent ...
is negative
      1 ../../../source/bfd/mach-o.c:2702:32: runtime error: shift exponent ...
is too large for 64-bit type 'long long int'
      1 ../../../source/bfd/mach-o.c:2735:22: runtime error: shift exponent ...
is too large for 64-bit type 'long long int'
      1 ../../../source/bfd/mach-o.c:2819:21: runtime error: shift exponent ...
is negative
      1 ../../../source/bfd/mach-o.c:2819:21: runtime error: shift exponent ...
is too large for 64-bit type 'long long int'
      1 ../../../source/bfd/mach-o.c:2823:23: runtime error: shift exponent ...
is negative
      1 ../../../source/bfd/mach-o.c:2823:23: runtime error: shift exponent ...
is too large for 64-bit type 'long long int'
      1 ../../../source/bfd/mach-o.c:2829:21: runtime error: shift exponent ...
is negative
      1 ../../../source/bfd/mach-o.c:2829:21: runtime error: shift exponent ...
is too large for 64-bit type 'long long int'

-- 
You are receiving this mail because:
You are on the CC list for the bug.
reply via email to
[Prev in Thread] Current Thread [Next in Thread]