[Bug tools/21300] heap-based buffer overflow in ebl_object_note_type_name (eblobjnotetypename.c)

mark at klomp dot org sourceware-bugzilla@sourceware.org
Mon Apr 3 21:51:00 GMT 2017


https://sourceware.org/bugzilla/show_bug.cgi?id=21300

Mark Wielaard <mark at klomp dot org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|UNCONFIRMED                 |RESOLVED
                 CC|                            |mark at klomp dot org
         Resolution|---                         |FIXED

--- Comment #3 from Mark Wielaard <mark at klomp dot org> ---
commit b0b58c5e0b34e54194aa042f2310af58ee7de603
Author: Mark Wielaard <mark@klomp.org>
Date:   Fri Mar 24 14:10:26 2017 +0100

    Use the empty string for note names with zero size (without any data).

    ELF notes can have a zero sized name. In which case there is no data at
    all (so also no zero terminator). Make sure to use the empty string for
    such notes if the code does not otherwise explicitly check n_namesz.

    https://sourceware.org/bugzilla/show_bug.cgi?id=21300

    Signed-off-by: Mark Wielaard <mark@klomp.org>

-- 
You are receiving this mail because:
You are on the CC list for the bug.


More information about the Elfutils-devel mailing list