[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Bug binutils/4496] New: bfd_elf_string_from_elf_section() doesn't check
|
From: |
victor dot stinner at haypocalc dot com |
|
Subject: |
[Bug binutils/4496] New: bfd_elf_string_from_elf_section() doesn't check shindex value |
|
Date: |
11 May 2007 14:40:07 -0000 |
bfd_elf_string_from_elf_section() function of bfd/elf.c doesn't check if
shindex is valid or not. I generated a file with my fuzzer which crash nm:
=> Segfault at bfd/elf.c, line 278
abdf->section=
abdf->section_count=0
abdf->shindex=65288 (!)
Proposition of fix: replace
if (strindex == 0)
return "";
with
if (strindex == 0 || abfd->section_count < shindex)
return "";
--
Summary: bfd_elf_string_from_elf_section() doesn't check shindex
value
Product: binutils
Version: 2.18 (HEAD)
Status: NEW
Severity: normal
Priority: P2
Component: binutils
AssignedTo: unassigned at sources dot redhat dot com
ReportedBy: victor dot stinner at haypocalc dot com
CC: bug-binutils at gnu dot org
GCC build triplet: linux,i386
GCC host triplet: linux,i386
GCC target triplet: linux,i386
http://sourceware.org/bugzilla/show_bug.cgi?id=4496
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
- [Bug binutils/4496] New: bfd_elf_string_from_elf_section() doesn't check shindex value,
victor dot stinner at haypocalc dot com <=