[Bug binutils/22191] New: memory leak in dwarf2.c in gnu binutils 2.29

bug-binutils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug binutils/22191] New: memory leak in dwarf2.c in gnu binutils 2.29

From:	luanjunchao at 163 dot com
Subject:	[Bug binutils/22191] New: memory leak in dwarf2.c in gnu binutils 2.29
Date:	Sat, 23 Sep 2017 08:00:06 +0000

https://sourceware.org/bugzilla/show_bug.cgi?id=22191

            Bug ID: 22191
           Summary: memory leak in dwarf2.c in gnu binutils 2.29
           Product: binutils
           Version: 2.29
            Status: UNCONFIRMED
          Severity: normal
          Priority: P2
         Component: binutils
          Assignee: unassigned at sourceware dot org
          Reporter: luanjunchao at 163 dot com
  Target Milestone: ---

Created attachment 10463
  --> https://sourceware.org/bugzilla/attachment.cgi?id=10463&action=edit
memory leak poc

The output of running "objdump --x -SD -Wl -R leak.elf" is as follows:

....
==78968==ERROR: LeakSanitizer: detected memory leaks

Direct leak of 40 byte(s) in 1 object(s) allocated from:
    #0 0x7f484f64f602 in malloc
(/usr/lib/x86_64-linux-gnu/libasan.so.2+0x98602)
    #1 0x4cfdfb in bfd_malloc /work/binutils-gdb-asan/bfd/libbfd.c:193
    #2 0x5e6dd7 in add_line_info dwarf2.c:1528
    #3 0x5eaf10 in decode_line_info dwarf2.c:2383
    #4 0x5f05b8 in comp_unit_find_nearest_line dwarf2.c:3562
    #5 0x5f5351 in _bfd_dwarf2_find_nearest_line dwarf2.c:4622
    #6 0x565d9a in _bfd_elf_find_nearest_line
/work/binutils-gdb-asan/bfd/elf.c:8653
    #7 0x409469 in show_line objdump.c:1486
    #8 0x40aaf6 in disassemble_bytes objdump.c:1791
    #9 0x40e0c3 in disassemble_section objdump.c:2313
    #10 0x4d8871 in bfd_map_over_sections
/work/binutils-gdb-asan/bfd/section.c:1395
    #11 0x40eb05 in disassemble_data objdump.c:2449
    #12 0x4141c9 in dump_bfd objdump.c:3546
    #13 0x414498 in display_object_bfd objdump.c:3603
    #14 0x414894 in display_any_bfd objdump.c:3692
    #15 0x414909 in display_file objdump.c:3713
    #16 0x415918 in main objdump.c:4015
    #17 0x7f484f00982f in __libc_start_main
(/lib/x86_64-linux-gnu/libc.so.6+0x2082f)

Indirect leak of 240 byte(s) in 6 object(s) allocated from:
    #0 0x7f484f64f602 in malloc
(/usr/lib/x86_64-linux-gnu/libasan.so.2+0x98602)
    #1 0x4cfdfb in bfd_malloc /work/binutils-gdb-asan/bfd/libbfd.c:193
    #2 0x5e6dd7 in add_line_info dwarf2.c:1528
    #3 0x5eaf10 in decode_line_info dwarf2.c:2383
    #4 0x5f05b8 in comp_unit_find_nearest_line dwarf2.c:3562
    #5 0x5f5351 in _bfd_dwarf2_find_nearest_line dwarf2.c:4622
    #6 0x565d9a in _bfd_elf_find_nearest_line
/work/binutils-gdb-asan/bfd/elf.c:8653
    #7 0x409469 in show_line objdump.c:1486
    #8 0x40aaf6 in disassemble_bytes objdump.c:1791
    #9 0x40e0c3 in disassemble_section objdump.c:2313
    #10 0x4d8871 in bfd_map_over_sections
/work/binutils-gdb-asan/bfd/section.c:1395
    #11 0x40eb05 in disassemble_data objdump.c:2449
    #12 0x4141c9 in dump_bfd objdump.c:3546
    #13 0x414498 in display_object_bfd objdump.c:3603
    #14 0x414894 in display_any_bfd objdump.c:3692
    #15 0x414909 in display_file objdump.c:3713
    #16 0x415918 in main objdump.c:4015
    #17 0x7f484f00982f in __libc_start_main
(/lib/x86_64-linux-gnu/libc.so.6+0x2082f)

Indirect leak of 40 byte(s) in 1 object(s) allocated from:
    #0 0x7f484f64f602 in malloc
(/usr/lib/x86_64-linux-gnu/libasan.so.2+0x98602)
    #1 0x4cfdfb in bfd_malloc /work/binutils-gdb-asan/bfd/libbfd.c:193
    #2 0x5e6dd7 in add_line_info dwarf2.c:1528
    #3 0x5ea651 in decode_line_info dwarf2.c:2296
    #4 0x5f05b8 in comp_unit_find_nearest_line dwarf2.c:3562
    #5 0x5f5351 in _bfd_dwarf2_find_nearest_line dwarf2.c:4622
    #6 0x565d9a in _bfd_elf_find_nearest_line
/work/binutils-gdb-asan/bfd/elf.c:8653
    #7 0x409469 in show_line objdump.c:1486
    #8 0x40aaf6 in disassemble_bytes objdump.c:1791
    #9 0x40e0c3 in disassemble_section objdump.c:2313
    #10 0x4d8871 in bfd_map_over_sections
/work/binutils-gdb-asan/bfd/section.c:1395
    #11 0x40eb05 in disassemble_data objdump.c:2449
    #12 0x4141c9 in dump_bfd objdump.c:3546
    #13 0x414498 in display_object_bfd objdump.c:3603
    #14 0x414894 in display_any_bfd objdump.c:3692
    #15 0x414909 in display_file objdump.c:3713
    #16 0x415918 in main objdump.c:4015
    #17 0x7f484f00982f in __libc_start_main
(/lib/x86_64-linux-gnu/libc.so.6+0x2082f)

SUMMARY: AddressSanitizer: 320 byte(s) leaked in 8 allocation(s).

It seems that some memory allocted by bfd_malloc is not freed during
disassemble process.
The poc file is attached

-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Prev in Thread]

Current Thread

[Next in Thread]

[Bug binutils/22191] New: memory leak in dwarf2.c in gnu binutils 2.29, luanjunchao at 163 dot com <=
- [Bug binutils/22191] memory leak in dwarf2.c in gnu binutils 2.29, amodra at gmail dot com, 2017/09/24
- [Bug binutils/22191] memory leak in dwarf2.c in gnu binutils 2.29, cvs-commit at gcc dot gnu.org, 2017/09/24
- [Bug binutils/22191] memory leak in dwarf2.c in gnu binutils 2.29, amodra at gmail dot com, 2017/09/24

Prev by Date: [Bug binutils/22169] heap-based buffer overflow in read_1_byte (dwarf2.c)
Next by Date: [Bug binutils/22169] heap-based buffer overflow in read_1_byte (dwarf2.c)
Previous by thread: [Bug binutils/22187] New: infinite loop in find_abstract_instance_name (dwarf2.c)
Next by thread: [Bug binutils/22191] memory leak in dwarf2.c in gnu binutils 2.29
Index(es):
- Date
- Thread