Summary: | LD: Buffer Overflow when loading symbols | ||
---|---|---|---|
Product: | binutils | Reporter: | Marcel Böhme <boehme.marcel> |
Component: | ld | Assignee: | Not yet assigned to anyone <unassigned> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | nickc, thuanpv |
Priority: | P2 | ||
Version: | 2.28 | ||
Target Milestone: | --- | ||
Host: | Target: | ||
Build: | Last reconfirmed: |
Description
Marcel Böhme
2016-12-03 10:01:02 UTC
The master branch has been updated by Nick Clifton <nickc@sourceware.org>: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=daae68f4f372e0618d6b9c64ec0f1f74eae6ab3d commit daae68f4f372e0618d6b9c64ec0f1f74eae6ab3d Author: Nick Clifton <nickc@redhat.com> Date: Mon Dec 5 12:25:34 2016 +0000 Fix seg-fault in linker parsing a corrupt input file. PR ld/20924 (aout_link_add_symbols): Fix off by one error checking for overflow of string offset. Hi Marcel, Thanks for reporting this bug. It was indeed very similar to PR 20909. In this case it was another off-by-one error when checking for a string buffer overflow. I have checked in a patch to resolve the problem. Cheers Nick This is CVE-2017-7301 |