[Bug general/24385] New: Regression lead to Invalid Address Deference, in handle_elf function in /src/strip.c

["wcventure at 126 dot com" <sourceware-bugzilla at sourceware dot org>]

https://sourceware.org/bugzilla/show_bug.cgi?id=24385

            Bug ID: 24385
           Summary: Regression lead to Invalid Address Deference, in
                    handle_elf function in /src/strip.c
           Product: elfutils
           Version: unspecified
            Status: UNCONFIRMED
          Severity: normal
          Priority: P2
         Component: general
          Assignee: unassigned at sourceware dot org
          Reporter: wcventure at 126 dot com
                CC: elfutils-devel at sourceware dot org
  Target Milestone: ---

Created attachment 11698
  --> https://sourceware.org/bugzilla/attachment.cgi?id=11698&action=edit
POC1

Hi,

I found some a regression bug.

This is anInvalid Address Deference bug, in handle_elf function in
/src/strip.c.

This problem exists in elfutils-0.176, but cannot reproduce in elfutils-0.175.
Thus this is a regression bug. elfutils 0.175 is right.

Here are the POC files. Please use " ./eu-strip $POC " to reproduce this 



ASAN bt:

> ASAN:SIGSEGV
> =================================================================
> ==10044==ERROR: AddressSanitizer: SEGV on unknown address 0x7ffce19d97b0 (pc 0x00000041339d bp 0x7ffce1978410 sp 0x7ffce1976750 T0)
>     #0 0x41339c in handle_elf elfutils-0.176/src/strip.c:1978
>     #1 0x41a2d1 in process_file elfutils-0.176/src/strip.c:769
>     #2 0x403b4b in main elfutils-0.176/src/strip.c:272
>     #3 0x7f505ec0382f in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x2082f)
>     #4 0x4046d8 in _start (elfutils-0.176_ASAN/build/bin/eu-strip+0x4046d8)
> 
> AddressSanitizer can not provide additional info.
> SUMMARY: AddressSanitizer: SEGV elfutils-0.176/src/strip.c:1978 handle_elf
> ==10044==ABORTING

-- 
You are receiving this mail because:
You are on the CC list for the bug.