[Bug libdw/23541] heap-buffer-overflow in /elfutils/libdw/dwarf_getaranges.c:156

mark at klomp dot org sourceware-bugzilla@sourceware.org
Sat Aug 18 20:50:00 GMT 2018


https://sourceware.org/bugzilla/show_bug.cgi?id=23541

Mark Wielaard <mark at klomp dot org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|UNCONFIRMED                 |RESOLVED
         Resolution|---                         |FIXED

--- Comment #2 from Mark Wielaard <mark at klomp dot org> ---
commit 29e31978ba51c1051743a503ee325b5ebc03d7e9
Author: Mark Wielaard <mark@klomp.org>
Date:   Sat Aug 18 13:27:48 2018 +0200

    libdw, readelf: Make sure there is enough data to read full aranges header.

    dwarf_getaranges didn't check if there was enough data left to read both
    the address and segment size. readelf didn't check there was enough data
    left to read the segment size.

    https://sourceware.org/bugzilla/show_bug.cgi?id=23541

    Signed-off-by: Mark Wielaard <mark@klomp.org>

-- 
You are receiving this mail because:
You are on the CC list for the bug.


More information about the Elfutils-devel mailing list