bug-binutils
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug binutils/21640] New: SEGV on unknown address in setup_group

From: aadamski at quarkslab dot com
Subject: [Bug binutils/21640] New: SEGV on unknown address in setup_group
Date: Tue, 20 Jun 2017 14:49:27 +0000 
https://sourceware.org/bugzilla/show_bug.cgi?id=21640

            Bug ID: 21640
           Summary: SEGV on unknown address in setup_group
           Product: binutils
           Version: 2.29 (HEAD)
            Status: UNCONFIRMED
          Severity: critical
          Priority: P2
         Component: binutils
          Assignee: unassigned at sourceware dot org
          Reporter: aadamski at quarkslab dot com
  Target Milestone: ---

Hello there,

I have been fuzzing objdump with American Fuzzy Lop + ASAN/UBSAN.

Please find attached the minimized file causing the issue ("Input") and the
ASAN report log ("Output"). Below is the reduced stacktrace with links to the
corresponding source lines on a GitHub mirror.

The configuration settings used were `--enable-targets=all --disable-shared`.
The compilation flags used were `-g -O2 -fno-omit-frame-pointer
-fsanitize=address -fno-sanitize-recover=all`. The command used was `objdump
-afpxDSsgetTrR <file>`.

Let me know if there is any additional information I can provide.

--

Input: bddca5abe14ac55c0764707e15635a01.c60f2687454e8b2466a224beb0edcde4.min
Output: bddca5abe14ac55c0764707e15635a01.c60f2687454e8b2466a224beb0edcde4.txt

Error in "setup_group": SEGV on unknown address 0x000000000000 (pc
0x0000009d2562 bp 0x7fffffffdae0 sp 0x7fffffffd820 T0)
  in setup_group at bfd/elf.c:742
    (see
https://github.com/bminor/binutils-gdb/blob/a6cab9afd2c81465265c8d09569e3e6ef43d2954/bfd/elf.c#L742)
  in _bfd_elf_make_section_from_shdr at bfd/elf.c:1012
    (see
https://github.com/bminor/binutils-gdb/blob/a6cab9afd2c81465265c8d09569e3e6ef43d2954/bfd/elf.c#L1012)
  in bfd_section_from_shdr at bfd/elf.c:2426
    (see
https://github.com/bminor/binutils-gdb/blob/a6cab9afd2c81465265c8d09569e3e6ef43d2954/bfd/elf.c#L2426)
  in setup_group at bfd/elf.c:641
    (see
https://github.com/bminor/binutils-gdb/blob/a6cab9afd2c81465265c8d09569e3e6ef43d2954/bfd/elf.c#L641)
  in _bfd_elf_make_section_from_shdr at bfd/elf.c:1012
    (see
https://github.com/bminor/binutils-gdb/blob/a6cab9afd2c81465265c8d09569e3e6ef43d2954/bfd/elf.c#L1012)
  in bfd_section_from_shdr at bfd/elf.c:2443
    (see
https://github.com/bminor/binutils-gdb/blob/a6cab9afd2c81465265c8d09569e3e6ef43d2954/bfd/elf.c#L2443)
  in bfd_elf32_object_p at bfd/elfcode.h:805
    (see
https://github.com/bminor/binutils-gdb/blob/a6cab9afd2c81465265c8d09569e3e6ef43d2954/bfd/elfcode.h#L805)
  in bfd_check_format_matches at bfd/format.c:311
    (see
https://github.com/bminor/binutils-gdb/blob/a6cab9afd2c81465265c8d09569e3e6ef43d2954/bfd/format.c#L311)
  in display_object_bfd at binutils/objdump.c:3608
    (see
https://github.com/bminor/binutils-gdb/blob/a6cab9afd2c81465265c8d09569e3e6ef43d2954/binutils/objdump.c#L3608)
  in display_any_bfd at binutils/objdump.c:3699
    (see
https://github.com/bminor/binutils-gdb/blob/a6cab9afd2c81465265c8d09569e3e6ef43d2954/binutils/objdump.c#L3699)
  in display_file at binutils/objdump.c:3720
    (see
https://github.com/bminor/binutils-gdb/blob/a6cab9afd2c81465265c8d09569e3e6ef43d2954/binutils/objdump.c#L3720)
  in main at binutils/objdump.c:4024
    (see
https://github.com/bminor/binutils-gdb/blob/a6cab9afd2c81465265c8d09569e3e6ef43d2954/binutils/objdump.c#L4024)

-- 
You are receiving this mail because:
You are on the CC list for the bug.
reply via email to
[Prev in Thread] Current Thread [Next in Thread]