[Bug binutils/26574] A heap buffer overflow in bfd_getl_signed_32

cvs-commit at gcc dot gnu.org Fri, 04 Sep 2020 03:04:05 -0700

https://sourceware.org/bugzilla/show_bug.cgi?id=26574


--- Comment #1 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot 
gnu.org> ---
The master branch has been updated by Alan Modra <amo...@sourceware.org>:

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=8642dafaef21aa6747cec01df1977e9c52eb4679

commit 8642dafaef21aa6747cec01df1977e9c52eb4679
Author: Alan Modra <amo...@gmail.com>
Date:   Fri Sep 4 19:19:18 2020 +0930

    PR26574, heap buffer overflow in _bfd_elf_slurp_secondary_reloc_section

    A horribly fuzzed object with section headers inside the ELF header.
    Disallow that, and crazy reloc sizes.

            PR 26574
            * elfcode.h (elf_object_p): Sanity check section header offset.
            * elf.c (_bfd_elf_slurp_secondary_reloc_section): Sanity check
            sh_entsize.

-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Bug binutils/26574] A heap buffer overflow in bfd_getl_signed_32

Reply via email to