[rfc] Do not crash reading UPX binaries
Ismail Dönmez
ismail@pardus.org.tr
Sun Jul 1 22:31:00 GMT 2007
On Monday 02 July 2007 01:27:47 Daniel Jacobowitz wrote:
> On Mon, Jul 02, 2007 at 01:12:27AM +0300, Ismail Dönmez wrote:
> > Please not that attached gdbupx is from a security advisory [0] [1] but
> > it looks like a simple DoS.
> >
> > [0] http://blog.xwings.net/?p=71
> > [1] http://blogs.securiteam.com/index.php/archives/922
>
> That would be useful in the report next time :-) I spent twenty
> minutes figuring out what was going on, and yes, it was the invalid
> symbol table pointer. I'm happy to hear that this won't affect all
> UPX files after all, just truncated ones.
The reporting system was scary, and it didn't return me back to the bug report
to let me add the references. Sorry and thanks for the fast fix.
Regards,
ismail
--
Perfect is the enemy of good
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 827 bytes
Desc: This is a digitally signed message part.
URL: <http://sourceware.org/pipermail/gdb-patches/attachments/20070701/e12c936c/attachment.sig>
More information about the Gdb-patches
mailing list