[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Bug binutils/26574] A heap buffer overflow in bfd_getl_signed_32
From: |
cvs-commit at gcc dot gnu.org |
Subject: |
[Bug binutils/26574] A heap buffer overflow in bfd_getl_signed_32 |
Date: |
Fri, 04 Sep 2020 10:02:59 +0000 |
https://sourceware.org/bugzilla/show_bug.cgi?id=26574
--- Comment #1 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot
gnu.org> ---
The master branch has been updated by Alan Modra <amodra@sourceware.org>:
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=8642dafaef21aa6747cec01df1977e9c52eb4679
commit 8642dafaef21aa6747cec01df1977e9c52eb4679
Author: Alan Modra <amodra@gmail.com>
Date: Fri Sep 4 19:19:18 2020 +0930
PR26574, heap buffer overflow in _bfd_elf_slurp_secondary_reloc_section
A horribly fuzzed object with section headers inside the ELF header.
Disallow that, and crazy reloc sizes.
PR 26574
* elfcode.h (elf_object_p): Sanity check section header offset.
* elf.c (_bfd_elf_slurp_secondary_reloc_section): Sanity check
sh_entsize.
--
You are receiving this mail because:
You are on the CC list for the bug.