Summary: | heap buffer overflow in print_gnu_property_note | ||
---|---|---|---|
Product: | binutils | Reporter: | Mingi Cho <mgcho.minic> |
Component: | binutils | Assignee: | Not yet assigned to anyone <unassigned> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | nickc |
Priority: | P2 | ||
Version: | 2.30 | ||
Target Milestone: | --- | ||
Host: | Target: | ||
Build: | Last reconfirmed: | ||
Attachments: | poc of the crash |
Description
Mingi Cho
2017-11-02 02:49:17 UTC
The master branch has been updated by Nick Clifton <nickc@sourceware.org>: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=6ab2c4ed51f9c4243691755e1b1d2149c6a426f4 commit 6ab2c4ed51f9c4243691755e1b1d2149c6a426f4 Author: Mingi Cho <mgcho.minic@gmail.com> Date: Thu Nov 2 17:01:08 2017 +0000 Work around integer overflows when readelf is checking for corrupt ELF notes when run on a 32-bit host. PR 22384 * readelf.c (print_gnu_property_note): Improve overflow checks so that they will work on a 32-bit host. Hi Mingi, Thanks very much for reporting this bug. And thanks again for providing a patch that fixes it. I have checked the patch in, so all should be good now. Cheers Nick |