bug-binutils
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug binutils/21440] Malicious PE with invalid extended relocation can c

From: nickc at redhat dot com
Subject: [Bug binutils/21440] Malicious PE with invalid extended relocation can cause binutils/objdumo 2.28 to allocate any-size big memory
Date: Tue, 02 May 2017 10:58:19 +0000 
https://sourceware.org/bugzilla/show_bug.cgi?id=21440

Nick Clifton <nickc at redhat dot com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|UNCONFIRMED                 |RESOLVED
                 CC|                            |nickc at redhat dot com
         Resolution|---                         |FIXED

--- Comment #3 from Nick Clifton <nickc at redhat dot com> ---
Thanks for reporting this bug.

I have applied a patch to add a check for the reloc size being larger than
the size of the file, and hence invalid, before an attempt is made to allocate
memory for the relocs.  I think that this should resolve the problem.

Cheers
  Nick

-- 
You are receiving this mail because:
You are on the CC list for the bug.
reply via email to
[Prev in Thread] Current Thread [Next in Thread]