This is the mail archive of the elfutils-devel@sourceware.org mailing list for the elfutils project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

[Bug libasm/25068] New: Several crashes inside libasm

From: "leftcopy.chx at gmail dot com" <sourceware-bugzilla at sourceware dot org>
To: elfutils-devel at sourceware dot org
Date: Sun, 06 Oct 2019 15:08:22 +0000
Subject: [Bug libasm/25068] New: Several crashes inside libasm
Auto-submitted: auto-generated

https://sourceware.org/bugzilla/show_bug.cgi?id=25068

            Bug ID: 25068
           Summary: Several crashes inside libasm
           Product: elfutils
           Version: unspecified
            Status: UNCONFIRMED
          Severity: normal
          Priority: P2
         Component: libasm
          Assignee: unassigned at sourceware dot org
          Reporter: leftcopy.chx at gmail dot com
                CC: elfutils-devel at sourceware dot org
  Target Milestone: ---

Created attachment 12023
  --> https://sourceware.org/bugzilla/attachment.cgi?id=12023&action=edit
POCs and error messages

By applying our fuzzer, we detected several crashes/vulnerabilities on git
47780c9e (HEAD).
The pocs are attached and can be triggered by running `./eu-objdump -d $FILE`
when ASAN is enabled.


$ ldd ./eu-objdump
        linux-vdso.so.1 (0x00007ffdbe7d8000)
        libasan.so.4 => /usr/lib/x86_64-linux-gnu/libasan.so.4
(0x00007f71d83ee000)
        libasm.so.1 =>
/home/hongxu/FOT/Targets/elfutils/eu-asan/install/lib/libasm.so.1
(0x00007f71d81d7000)
        libdw.so.1 =>
/home/hongxu/FOT/Targets/elfutils/eu-asan/install/lib/libdw.so.1
(0x00007f71d7d9a000)
        libelf.so.1 =>
/home/hongxu/FOT/Targets/elfutils/eu-asan/install/lib/libelf.so.1
(0x00007f71d7b3f000)
        libc.so.6 => /lib/x86_64-linux-gnu/libc.so.6 (0x00007f71d774e000)
        libdl.so.2 => /lib/x86_64-linux-gnu/libdl.so.2 (0x00007f71d754a000)
        librt.so.1 => /lib/x86_64-linux-gnu/librt.so.1 (0x00007f71d7342000)
        libpthread.so.0 => /lib/x86_64-linux-gnu/libpthread.so.0
(0x00007f71d7123000)
        libm.so.6 => /lib/x86_64-linux-gnu/libm.so.6 (0x00007f71d6d85000)
        libgcc_s.so.1 => /lib/x86_64-linux-gnu/libgcc_s.so.1
(0x00007f71d6b6d000)
        libz.so.1 => /lib/x86_64-linux-gnu/libz.so.1 (0x00007f71d6950000)
        liblzma.so.5 => /lib/x86_64-linux-gnu/liblzma.so.5 (0x00007f71d672a000)
        libbz2.so.1.0 => /lib/x86_64-linux-gnu/libbz2.so.1.0
(0x00007f71d651a000)
        /lib64/ld-linux-x86-64.so.2 (0x00007f71d96cd000)

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Follow-Ups:
- [Bug libasm/25068] Several crashes inside libasm
  - From: mark at klomp dot org
- [Bug libasm/25068] Several crashes inside libasm
  - From: mark at klomp dot org

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]