[Bug binutils/24402] New: global-buffer-overflow in symtab_finalize function in symtab.c in Binutils 2.32

Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11711 --> https://sourceware.org/bugzilla/attachment.cgi?id=11711&action=edit

[Bug ld/24340] New: An Invalid Memory Address Dereference problem was discovered in function set_symbol_value in elflink.c in bfd

: 2.32 Status: UNCONFIRMED Severity: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11680 --> https://sourceware.org/bugzi

[Bug ld/24339] New: An Invalid Memory Address Dereference problem was discovered in function elf_x86_64_check_relocs in elf64-x86-64.c in bfd

Version: 2.32 Status: UNCONFIRMED Severity: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11679 --> https://sourceware.

[Bug ld/24338] Heap-buffer-overflow in elf_x86_64_relocate_section in elf64-x86-64.c in bfd

https://sourceware.org/bugzilla/show_bug.cgi?id=24338 --- Comment #1 from wcventure --- Created attachment 11678 --> https://sourceware.org/bugzilla/attachment.cgi?id=11678&action=edit POC2 -- You are receiving this mail because: You are on the CC list for the bug. ___

[Bug ld/24338] New: Heap-buffer-overflow in elf_x86_64_relocate_section in elf64-x86-64.c in bfd

Severity: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11677 --> https://sourceware.org/bugzilla/attachment.cgi?id=11677&action=edit POC Hi,

[Bug ld/24337] New: An Invalid Memory Address Dereference problem was discovered in function _bfd_elf_rela_local_sym in elf.c in bfd

Version: 2.32 Status: UNCONFIRMED Severity: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11676 --> https://sourceware.org/bugzi

[Bug ld/24336] New: Heap-buffer-overflow in bfd_elf64_swap_reloca_in function in elfcode.h in bfd

Severity: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11675 --> https://sourceware.org/bugzilla/attachment.cgi?id=11675&action=edit POC Hi,

[Bug ld/24334] New: Heap-buffer-overflow in section_vma_same function in dwarf2.c in bfd

: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11674 --> https://sourceware.org/bugzilla/attachment.cgi?id=11674&action=edit POC Hi, A Heap

[Bug ld/24333] New: An Invalid Memory Address Dereference problem was discovered in function _bfd_elf_add_default_symbol in elflink.c in bfd

Version: 2.32 Status: UNCONFIRMED Severity: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11673 --> https://sourceware.

[Bug ld/24332] Heap-buffer-overflow in bfd_getl16 and bfd_getl64 in bfd, respectively

https://sourceware.org/bugzilla/show_bug.cgi?id=24332 --- Comment #2 from wcventure --- Created attachment 11672 --> https://sourceware.org/bugzilla/attachment.cgi?id=11672&action=edit POC2 POC2 for bfd_getl64 -- You are receiving this mail because: You are on the CC list for the bug. __

[Bug ld/24332] Heap-buffer-overflow in bfd_getl16 and bfd_getl64 in bfd, respectively

https://sourceware.org/bugzilla/show_bug.cgi?id=24332 --- Comment #1 from wcventure --- Created attachment 11671 --> https://sourceware.org/bugzilla/attachment.cgi?id=11671&action=edit POC1 POC1 for bfd_getl16 -- You are receiving this mail because: You are on the CC list for the bug. __

[Bug ld/24332] New: Heap-buffer-overflow in bfd_getl16 and bfd_getl64 in bfd, respectively

: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Hi, A Heap-buffer-overflow problem was discovered in the function in bfd_getl16 and bfd_getl64 in libbfd.c in bfd

[Bug ld/24041] Invalid Memory Address Dereference exists in the function elf_link_add_object_symbols in elflink.c in bfd

https://sourceware.org/bugzilla/show_bug.cgi?id=24041 --- Comment #3 from wcventure --- CVE-2018-20651 -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org

[Bug binutils/24043] Heap-buffer-overflow problem in function d_expression_1 in cp-demangle.c, as demonstrated by c++filt

https://sourceware.org/bugzilla/show_bug.cgi?id=24043 --- Comment #5 from wcventure --- This issue is moved to https://gcc.gnu.org/bugzilla/show_bug.cgi?id=88629 -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binu

[Bug binutils/23767] Integer Overflow in cplus-dem.c in c++filt in bintuils which leads to Undefined-behavior(OOM in this POC)

https://sourceware.org/bugzilla/show_bug.cgi?id=23767 --- Comment #5 from wcventure --- (In reply to wcventure from comment #4) > (In reply to Salvatore Bonaccorso from comment #3) > > Was this issue reported to the GCC bugzilla? > > Yes, see > https://gcc.gnu.org/bugzilla/show_bug.cgi?id=87602

[Bug binutils/23767] Integer Overflow in cplus-dem.c in c++filt in bintuils which leads to Undefined-behavior(OOM in this POC)

https://sourceware.org/bugzilla/show_bug.cgi?id=23767 --- Comment #4 from wcventure --- (In reply to Salvatore Bonaccorso from comment #3) > Was this issue reported to the GCC bugzilla? Yes, see https://gcc.gnu.org/bugzilla/show_bug.cgi?id=87602 -- You are receiving this mail because: You are

[Bug binutils/24043] Heap-buffer-overflow problem in function d_expression_1 in cp-demangle.c, as demonstrated by c++filt

https://sourceware.org/bugzilla/show_bug.cgi?id=24043 --- Comment #3 from wcventure --- That 's because "d_advance (di, 2);" in function d_expression_1, it change di->n = di + 2; leading to buffer-over-flow problem. > 3353 d_advance (di, 2); > 3354 if (peek == 't') > 3355 type = cplu

[Bug ld/24041] New: Invalid Memory Address Dereference exists in the function elf_link_add_object_symbols in elflink.c in bfd

: 2.31 Status: UNCONFIRMED Severity: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11496 --> https://sourceware.org/bugzi

[Bug ld/24042] New: Global-buffer-overflow problem in function output_rel_find in eelf_x86_64.c, as demonstrated by "ld -E"

sion: 2.31 Status: UNCONFIRMED Severity: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11497 --> https://sourceware

[Bug binutils/24043] Heap-buffer-overflow problem in function d_expression_1 in cp-demangle.c, as demonstrated by c++filt

https://sourceware.org/bugzilla/show_bug.cgi?id=24043 --- Comment #2 from wcventure --- Created attachment 11501 --> https://sourceware.org/bugzilla/attachment.cgi?id=11501&action=edit POC3 -- You are receiving this mail because: You are on the CC list for the bug. ___

[Bug binutils/24043] New: Heap-buffer-overflow problem in function d_expression_1 in cp-demangle.c, as demonstrated by c++filt

(HEAD) Status: UNCONFIRMED Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11499 --> https://sourceware.

[Bug ld/24042] Global-buffer-overflow problem in function output_rel_find in eelf_x86_64.c, as demonstrated by "ld -E"

https://sourceware.org/bugzilla/show_bug.cgi?id=24042 --- Comment #1 from wcventure --- Created attachment 11498 --> https://sourceware.org/bugzilla/attachment.cgi?id=11498&action=edit POC2 -- You are receiving this mail because: You are on the CC list for the bug. ___

[Bug binutils/24043] Heap-buffer-overflow problem in function d_expression_1 in cp-demangle.c, as demonstrated by c++filt

https://sourceware.org/bugzilla/show_bug.cgi?id=24043 --- Comment #1 from wcventure --- Created attachment 11500 --> https://sourceware.org/bugzilla/attachment.cgi?id=11500&action=edit POC2 -- You are receiving this mail because: You are on the CC list for the bug. ___

[Bug binutils/24007] New: Multiple memory leak in ld

Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11475 --> https://sourceware.org/bugzilla/attachment.cgi?id=11475&action=edit POC Hi there, Multiple memory leak issues were discovered in ld, as dist

[Bug binutils/24002] A memory leak issue was discovered in cplus-dem.c

https://sourceware.org/bugzilla/show_bug.cgi?id=24002 --- Comment #1 from wcventure --- Created attachment 11471 --> https://sourceware.org/bugzilla/attachment.cgi?id=11471&action=edit POC2 -- You are receiving this mail because: You are on the CC list for the bug. ___

[Bug binutils/24002] New: A memory leak issue was discovered in cplus-dem.c

Component: binutils Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11470 --> https://sourceware.org/bugzilla/attachment.cgi?id=11470&action=edit POC1 Hi there, A memory leak issue was discovered i

[Bug binutils/24001] New: A memory leak issue was discovered in function debug_init in debug.c

: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11468 --> https://sourceware.org/bugzilla/attachment.cgi?id=11468&action=edit POC1 Hi th

[Bug binutils/24001] A memory leak issue was discovered in function debug_init in debug.c

https://sourceware.org/bugzilla/show_bug.cgi?id=24001 --- Comment #1 from wcventure --- Created attachment 11469 --> https://sourceware.org/bugzilla/attachment.cgi?id=11469&action=edit POC2 -- You are receiving this mail because: You are on the CC list for the bug. ___

[Bug binutils/23952] New: A memory leak issue was discovered in bfd

: binutils Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11430 --> https://sourceware.org/bugzilla/attachment.cgi?id=11430&action=edit MemoryLeak-POC Hi there, A memory leak issue was discovered

[Bug ld/23806] NULL Pointer Dereference problem was discovered in function merge_strings() in merge.c in bfd

https://sourceware.org/bugzilla/show_bug.cgi?id=23806 wcventure changed: What|Removed |Added Summary|Invalid Address Read|NULL Pointer Dereference

[Bug ld/23805] NULL Pointer Dereference exists in the function elf_link_input_bfd() in merge.c

https://sourceware.org/bugzilla/show_bug.cgi?id=23805 wcventure changed: What|Removed |Added Summary|An Invalid Memory Address |NULL Pointer Dereference

[Bug ld/23806] New: Invalid Address Read problem was discovered in function merge_strings() in merge.c in bfd

Severity: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11358 --> https://sourceware.org/bugzilla/attachment.cgi?id=11358&action=e

[Bug ld/23805] New: An Invalid Memory Address Dereference exists in the function elf_link_input_bfd() in merge.c

: UNCONFIRMED Severity: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11357 --> https://sourceware.org/bugzilla/attachment.cgi?id=11357&action=e

[Bug binutils/23804] New: Heap-buffer-overflow problem in function Sec_merge_hash_lookup in merge.c, as demonstrated by "ld -E"

sion: 2.31 Status: UNCONFIRMED Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11355 --> https://sourceware

[Bug binutils/23804] Heap-buffer-overflow problem in function Sec_merge_hash_lookup in merge.c, as demonstrated by "ld -E"

https://sourceware.org/bugzilla/show_bug.cgi?id=23804 --- Comment #1 from wcventure --- Created attachment 11356 --> https://sourceware.org/bugzilla/attachment.cgi?id=11356&action=edit POC2 Please use the "./ld -E $POC" to reproduce the bug. This bug was discovered by NTU Cyber-Security-Lab. I

[Bug binutils/23770] An Invalid memory address dereference was discovered in function read_reloc in raloc.c in program objdump.

https://sourceware.org/bugzilla/show_bug.cgi?id=23770 --- Comment #5 from wcventure --- (In reply to tanaya patil from comment #4) > What the version in which this fix is promoted? https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=0930cb3021b8078b34cf216e79eb8608d017864f -- You are re

[Bug binutils/23772] A NULL-Pointer dereference problems in ldlang.c in program ld (member access within null pointer of type 'union lang_statement_union')

https://sourceware.org/bugzilla/show_bug.cgi?id=23772 --- Comment #2 from wcventure --- My configure and compile option is: > CC=clang LDFLAGS="-ldl" CFLAGS="-DFORTIFY_SOURCE=2 -fstack-protector-all > -fsanitize=undefined,address -fno-omit-frame-pointer -g -O0 -Wno-error" > ./configure --disab

[Bug binutils/23767] Integer Overflow in cplus-dem.c in c++filt in bintuils which leads to Undefined-behavior(OOM in this POC)

https://sourceware.org/bugzilla/show_bug.cgi?id=23767 wcventure changed: What|Removed |Added Summary|Out of Memory problem |Integer Overflow in |ca

[Bug binutils/23770] An Invalid memory address dereference was discovered in function read_reloc in raloc.c in program objdump.

https://sourceware.org/bugzilla/show_bug.cgi?id=23770 --- Comment #3 from wcventure --- Thanks for paying attention to this problem and fixing it in time. This issue was raised by NTU Cyber-Security-Lab, for fuzzing research work. -- You are receiving this mail because: You are on the CC list f

[Bug binutils/23772] New: A NULL-Pointer dereference problems in ldlang.c in program ld (member access within null pointer of type 'union lang_statement_union')

Product: binutils Version: 2.31 Status: UNCONFIRMED Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attach

[Bug binutils/23771] New: A memory exhaustion problem in program objdump via a crafted ELF file

: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11323 --> https://sourceware.org/bugzilla/attachment.cgi?id=11323&action=edit POC_MEM_EX

[Bug binutils/23770] New: An Invalid memory address dereference was discovered in function read_reloc in raloc.c in program objdump.

Status: UNCONFIRMED Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11322 --> https://sourceware.org/bugzilla/attachment.cgi

[Bug binutils/23767] New: Out of Memory problem caused by Integer Overflow in c++filt

Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11321 --> https://sourceware.org/bugzilla/attachment.cgi?id=11321&action=edit POC_input Hi. We ar

[Bug binutils/23677] The stack overflow in function cplus_demangle_type in cp-demangle.c:2565 ( c++filt -t )

https://sourceware.org/bugzilla/show_bug.cgi?id=23677 --- Comment #2 from wcventure --- (In reply to Nick Clifton from comment #1) > Hi wcventure, > > Thank you for reporting this bug. > > The libiberty library, which includes the cplus_demangle_type function > is actually part of the gcc

[Bug binutils/23674] stack overflow in c++filt

https://sourceware.org/bugzilla/show_bug.cgi?id=23674 wcventure changed: What|Removed |Added Summary|Please help me to delete|stack overflow in c++filt

[Bug binutils/23677] New: The stack overflow in function cplus_demangle_type in cp-demangle.c:2565 ( c++filt -t )

Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11252 --> https://sourceware.org/bugzilla/attachment.cgi?id=11252&acti

[Bug binutils/23674] Please help me to delete this issue. I have rebuilt anoter issue.

https://sourceware.org/bugzilla/show_bug.cgi?id=23674 wcventure changed: What|Removed |Added Summary|Another stack overflow |Please help me to delete

[Bug binutils/23674] New: Another stack overflow problem in c++filt

Component: binutils Assignee: unassigned at sourceware dot org Reporter: wcventure at 126 dot com Target Milestone: --- Created attachment 11251 --> https://sourceware.org/bugzilla/attachment.cgi?id=11251&action=edit c++filt < POC1 We have found some stack overflow