[Bug binutils/21916] New: Null-Deref and OOB Read in ELF Parsing

Component: binutils Assignee: unassigned at sourceware dot org Reporter: ned at forallsecure dot com Target Milestone: --- Created attachment 10324 --> https://sourceware.org/bugzilla/attachment.cgi?id=10324&action=edit 3 testcases with ASAN output Hi there, I have a f

[Bug binutils/21840] New: Undefined behavior round 3

: binutils Assignee: unassigned at sourceware dot org Reporter: ned at forallsecure dot com Target Milestone: --- Created attachment 10285 --> https://sourceware.org/bugzilla/attachment.cgi?id=10285&action=edit Testcases and ASAN output I have found 5 more testcases re

[Bug binutils/21813] New: Additional undefined behavior and crashes

Component: binutils Assignee: unassigned at sourceware dot org Reporter: ned at forallsecure dot com Target Milestone: --- Created attachment 10281 --> https://sourceware.org/bugzilla/attachment.cgi?id=10281&action=edit 5 testcases with asan output I've found 5

[Bug binutils/21786] Stack-buffer-overflow in {coff,coff64}-rs6000.c

https://sourceware.org/bugzilla/show_bug.cgi?id=21786 --- Comment #5 from Ned Williamson --- Hi Nick, thanks for the great patch! It's much better than the suggested one. Thank you for pointing out the specification. I did see a crash in coff64-rs6000 as well, so that may need to use the new saf

[Bug binutils/21787] Heap-use-after-free in bfd_cache_close

https://sourceware.org/bugzilla/show_bug.cgi?id=21787 --- Comment #1 from Ned Williamson --- Created attachment 10273 --> https://sourceware.org/bugzilla/attachment.cgi?id=10273&action=edit crash state ASAN output for crashing state. -- You are receiving this mail because: You are on the CC

[Bug binutils/21787] New: Heap-use-after-free in bfd_cache_close

Component: binutils Assignee: unassigned at sourceware dot org Reporter: ned at forallsecure dot com Target Milestone: --- Created attachment 10272 --> https://sourceware.org/bugzilla/attachment.cgi?id=10272&action=edit testcase A heap-use-after-free is triggered w

[Bug binutils/21786] Stack-buffer-overflow in {coff,coff64}-rs6000.c

https://sourceware.org/bugzilla/show_bug.cgi?id=21786 --- Comment #2 from Ned Williamson --- Created attachment 10271 --> https://sourceware.org/bugzilla/attachment.cgi?id=10271&action=edit crash state Here is the crashing state when inspecting the crash using ASAN. -- You are receiving this

[Bug binutils/21786] Stack-buffer-overflow in {coff,coff64}-rs6000.c

https://sourceware.org/bugzilla/show_bug.cgi?id=21786 --- Comment #1 from Ned Williamson --- Created attachment 10270 --> https://sourceware.org/bugzilla/attachment.cgi?id=10270&action=edit suggested patch Here, I attach my suggested patch, fixing all places where I was able to trigger the bug

[Bug binutils/21786] New: Stack-buffer-overflow in {coff,coff64}-rs6000.c

Component: binutils Assignee: unassigned at sourceware dot org Reporter: ned at forallsecure dot com Target Milestone: --- Created attachment 10269 --> https://sourceware.org/bugzilla/attachment.cgi?id=10269&action=edit testcase `_bfd_xcoff_read_ar_hdr` and

[Bug binutils/21781] New: Internal error in handle_COMDAT

: binutils Assignee: unassigned at sourceware dot org Reporter: ned at forallsecure dot com Target Milestone: --- Created attachment 10268 --> https://sourceware.org/bugzilla/attachment.cgi?id=10268&action=edit internal_error_coffcode The attached file produces the fo