[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 Alexander Cherepanov changed: What|Removed |Added CC||cherepan at mccme dot ru

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #49 from Alexander Cherepanov --- Created attachment 7881 --> https://sourceware.org/bugzilla/attachment.cgi?id=7881&action=edit Several pe crashers all different according to valgrind -- You are receiving this mail because: Y

[Bug binutils/17531] New: readelf -a crashes on fuzzed samples

: binutils Assignee: unassigned at sourceware dot org Reporter: cherepan at mccme dot ru Created attachment 7882 --> https://sourceware.org/bugzilla/attachment.cgi?id=7882&action=edit `readelf -a` crashes `readelf -a` (both 2.24 and head) fails on some fuzzed samples: -

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #1 from Alexander Cherepanov --- Created attachment 7883 --> https://sourceware.org/bugzilla/attachment.cgi?id=7883&action=edit `readelf -a` assertion failed -- You are receiving this mail because: You are on the CC list for th

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #2 from Alexander Cherepanov --- Created attachment 7884 --> https://sourceware.org/bugzilla/attachment.cgi?id=7884&action=edit `readelf -a` loops forever -- You are receiving this mail because: You are on the CC list for the b

[Bug binutils/17533] New: objdump/ar/... crash on malformed ar file

: binutils Assignee: unassigned at sourceware dot org Reporter: cherepan at mccme dot ru $ printf '!\n//%48d%8s`\n' -2 '' > test.a $ objdump -x test.a Segmentation fault At least 2.22, 2.24 and head are affected. ar, size, strip etc. are also affected.

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #53 from Alexander Cherepanov --- Created attachment 7885 --> https://sourceware.org/bugzilla/attachment.cgi?id=7885&action=edit valgrind output for 140849-0.004.exe Shows a bunch of error of the following types: - Use of uninit

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #54 from Alexander Cherepanov --- Created attachment 7886 --> https://sourceware.org/bugzilla/attachment.cgi?id=7886&action=edit More crashers for `objdump -x` list.txt inside the archive lists various errors from valgrind (with

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #6 from Alexander Cherepanov --- Created attachment 7890 --> https://sourceware.org/bugzilla/attachment.cgi?id=7890&action=edit Crashers for `readelf -a` Files: 8 Errors: 2 Conditional jump or move depends on uninitialised

[Bug binutils/17533] objdump/ar/... crash on malformed ar file

https://sourceware.org/bugzilla/show_bug.cgi?id=17533 --- Comment #5 from Alexander Cherepanov --- s/head works for now/head works for me now/ -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list b

[Bug binutils/17533] objdump/ar/... crash on malformed ar file

https://sourceware.org/bugzilla/show_bug.cgi?id=17533 --- Comment #4 from Alexander Cherepanov --- Thanks, head works for now. I have another one for you -- directory traversal: $ printf '!\n%-48s%-10d`\n../file\n%-48s%-10s`\n' '//' 8 '/0' 0 > test.a $ ar xv test.a x - ../file -- You are rece

[Bug binutils/17533] objdump/ar/... crash on malformed ar file

https://sourceware.org/bugzilla/show_bug.cgi?id=17533 --- Comment #7 from Alexander Cherepanov --- The danger is in overwriting sensitive files (e.g. authorized_keys) by an unconscious user or by an automatic process while extracting the contents of an archive. For similar examples please see htt

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #57 from Alexander Cherepanov --- Created attachment 7893 --> https://sourceware.org/bugzilla/attachment.cgi?id=7893&action=edit valgrind output for 140849-0.004.exe with --track-origins=yes (In reply to Nick Clifton from commen

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #10 from Alexander Cherepanov --- Created attachment 7895 --> https://sourceware.org/bugzilla/attachment.cgi?id=7895&action=edit More crashers Files: 10 Errors: 2 Conditional jump or move depends on uninitialised value(s)

[Bug binutils/17552] New: strip/objcopy: directory traversal

: binutils Assignee: unassigned at sourceware dot org Reporter: cherepan at mccme dot ru strip and objcopy don't filter out .. components from paths inside archive. Consider an archive created with the following command: $ printf '!\n%-48s%-10d`\n../file\n%-48s%-10s`\n'

[Bug binutils/17533] objdump/ar/... crash on malformed ar file

https://sourceware.org/bugzilla/show_bug.cgi?id=17533 --- Comment #8 from Alexander Cherepanov --- See also bug #17552. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org htt

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #61 from Alexander Cherepanov --- Created attachment 7900 --> https://sourceware.org/bugzilla/attachment.cgi?id=7900&action=edit More crashers for `objdump -x` objdump is definitely getting harder to crash. Keep up the good work

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #62 from Alexander Cherepanov --- (In reply to Alexander Cherepanov from comment #61) > Created attachment 7900 [details] > More crashers for `objdump -x` > > objdump is definitely getting harder to crash. Keep up the good work! >

[Bug binutils/17552] strip/objcopy: directory traversal

https://sourceware.org/bugzilla/show_bug.cgi?id=17552 --- Comment #3 from Alexander Cherepanov --- Yes, the check seems to be Ok in general. And the specific issues are fixed. Two remarks: - strip/objcopy don't remove temporary files and dirs when run on the test.a from below. Perhaps, this is i

[Bug binutils/17533] objdump/ar/... crash on malformed ar file

https://sourceware.org/bugzilla/show_bug.cgi?id=17533 --- Comment #11 from Alexander Cherepanov --- I've tried the patch from PR 17522. It fixes this issue too. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binut

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #67 from Alexander Cherepanov --- Created attachment 7905 --> https://sourceware.org/bugzilla/attachment.cgi?id=7905&action=edit More crashers for `objdump -x` Files: 9 Errors: 29 Conditional jump or move depends on uniniti

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #12 from Alexander Cherepanov --- Created attachment 7906 --> https://sourceware.org/bugzilla/attachment.cgi?id=7906&action=edit More badness for `readelf -a` Files: 16 Errors: 13 Argument 'size' of function malloc has a fi

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #68 from Alexander Cherepanov --- Created attachment 7910 --> https://sourceware.org/bugzilla/attachment.cgi?id=7910&action=edit More badness for `objdump -x` Files: 11 Errors: 1 Argument 'size' of function malloc has a fi

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #13 from Alexander Cherepanov --- Created attachment 7911 --> https://sourceware.org/bugzilla/attachment.cgi?id=7911&action=edit More badness for `readelf -a` Files: 11 Errors: 40 Invalid read of size ... 2 Process te

[Bug binutils/17552] strip/objcopy: directory traversal

https://sourceware.org/bugzilla/show_bug.cgi?id=17552 --- Comment #7 from Alexander Cherepanov --- (In reply to Nick Clifton from comment #6) > Please try out this patch and see if it gets rid of those left over > temporary files... The patch doesn't apply to git head: patching file binutil

[Bug binutils/17552] strip/objcopy: directory traversal

https://sourceware.org/bugzilla/show_bug.cgi?id=17552 --- Comment #9 from Alexander Cherepanov --- Sorry, Nick, the new patch seems exactly as the previous. And it doesn't apply to git head. Did I miss something? -- You are receiving this mail because: You are on the CC list for the bug. _

[Bug binutils/17552] strip/objcopy: directory traversal

https://sourceware.org/bugzilla/show_bug.cgi?id=17552 --- Comment #11 from Alexander Cherepanov --- Ok, figured it out -- tabs were garbled while copy-pasting from a Web-page. Sorry for the noise. The patch is working for me (binutils/strip-new and binutils/objcopy). -- You are receiving this

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #16 from Alexander Cherepanov --- Created attachment 7915 --> https://sourceware.org/bugzilla/attachment.cgi?id=7915&action=edit One more crash Cool! Only one crash so far. But there are some asserts (attached next). And a lot

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #17 from Alexander Cherepanov --- Created attachment 7916 --> https://sourceware.org/bugzilla/attachment.cgi?id=7916&action=edit Assertions failed Files: 11 Errors: 1 readelf.c:10471: process_syminfo: Assertion `i < num_dy

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #18 from Alexander Cherepanov --- (In reply to Alexander Cherepanov from comment #16) > Created attachment 7915 [details] > One more crash Files: 1 Errors: 1 Invalid read of size ... 1 Process terminating with default

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #70 from Alexander Cherepanov --- FTR: It seems the number of the bug in the commit is mistyped as PR binutils/17521. The commit is here: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=36e9d67b868c85232ab630514260f0d9c

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #74 from Alexander Cherepanov --- Created attachment 7919 --> https://sourceware.org/bugzilla/attachment.cgi?id=7919&action=edit More badness for `objdump -x` Files: 18 Errors: 10 Argument 'size' of function malloc has a fi

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #21 from Alexander Cherepanov --- Created attachment 7920 --> https://sourceware.org/bugzilla/attachment.cgi?id=7920&action=edit One more assertion failed Files: 1 Errors: 1 readelf.c:12975: process_attributes: Assertion `

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #24 from Alexander Cherepanov --- Created attachment 7921 --> https://sourceware.org/bugzilla/attachment.cgi?id=7921&action=edit crasher for `readelf -agteADruhlsSdIncwVW` Files: 1 Errors: 2 Invalid read of size ...

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #25 from Alexander Cherepanov --- Created attachment 7922 --> https://sourceware.org/bugzilla/attachment.cgi?id=7922&action=edit Crasher for `readelf -agteAruhlsSdIncwVW --dyn-syms -D` Files: 1 Errors: 1 Invalid read of si

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #80 from Alexander Cherepanov --- Created attachment 7924 --> https://sourceware.org/bugzilla/attachment.cgi?id=7924&action=edit Crashers for `objdump -afphxgGWtTrRw --special-syms` Files: 26 Errors: 6 Argument 'size' of f

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #81 from Alexander Cherepanov --- Created attachment 7925 --> https://sourceware.org/bugzilla/attachment.cgi?id=7925&action=edit Aborts in `objdump -afphxgGWtTrRw --special-syms` 3 cases of abort() in `objdump -afphxgGWtTrRw --s

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #28 from Alexander Cherepanov --- Created attachment 7927 --> https://sourceware.org/bugzilla/attachment.cgi?id=7927&action=edit More badness for `readelf -agteAruhlsSdIncwVW --dyn-syms -D` No crashes so far but some badness...

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #84 from Alexander Cherepanov --- Created attachment 7928 --> https://sourceware.org/bugzilla/attachment.cgi?id=7928&action=edit More badness for `objdump -afphxgGWtTrRw --special-syms` Files: 18 Errors: 5 Argument 'size'

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #87 from Alexander Cherepanov --- Created attachment 7930 --> https://sourceware.org/bugzilla/attachment.cgi?id=7930&action=edit Baddness for `objdump -afphxgGtTrRwW --special-syms` Messed with option in the previous run, readel

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #88 from Alexander Cherepanov --- Created attachment 7934 --> https://sourceware.org/bugzilla/attachment.cgi?id=7934&action=edit A bit more badness for `objdump -afphxgGtTrRwW --special-syms` Files: 3 Errors: 1 Invalid rea

[Bug binutils/17605] New: ar crashes on malformed archive

Assignee: unassigned at sourceware dot org Reporter: cherepan at mccme dot ru Test: $ printf '!\n%16s%-32s%-10s`\n' '' 10 0 > test.a $ ar tv test.a Segmentation fault It crashes inside binutils-gdb/binutils/bucomm.c: 424if (

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #92 from Alexander Cherepanov --- Created attachment 7940 --> https://sourceware.org/bugzilla/attachment.cgi?id=7940&action=edit Fresh crashers for `objdump -afphxgGtTrRwW --special-syms` Added several samples to the fuzzing...

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #93 from Alexander Cherepanov --- Created attachment 7941 --> https://sourceware.org/bugzilla/attachment.cgi?id=7941&action=edit And some aborts for `objdump -afphxgGtTrRwW --special-syms` Files: 17 Errors: 17 No assertion

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #94 from Alexander Cherepanov --- (In reply to Alexander Cherepanov from comment #93) > Created attachment 7941 [details] > And some aborts for `objdump -afphxgGtTrRwW --special-syms` > > Files: 17 > Errors: > 17 No assertion

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #31 from Alexander Cherepanov --- Created attachment 7942 --> https://sourceware.org/bugzilla/attachment.cgi?id=7942&action=edit Another crasher for `readelf -a` Files: 1 Errors: 2 Invalid read of size ... 1 Process

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #99 from Alexander Cherepanov --- Created attachment 7947 --> https://sourceware.org/bugzilla/attachment.cgi?id=7947&action=edit AFL crashers for `objdump -x` With AFL... Files: 3 Errors: 3 Invalid write of size ...

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #103 from Alexander Cherepanov --- (In reply to Nick Clifton from comment #60) > Created attachment 7898 [details] > Proposed patch to fix valgrind's complaints about using uninitialised memory > > (In reply to comment #57) > > H

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #104 from Alexander Cherepanov --- Created attachment 7956 --> https://sourceware.org/bugzilla/attachment.cgi?id=7956&action=edit Patch to fix a crash inside _bfd_coff_read_string_table in bfd/coffgen.c Hi Nick, (In reply to Ni

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #37 from Alexander Cherepanov --- Created attachment 7957 --> https://sourceware.org/bugzilla/attachment.cgi?id=7957&action=edit AFL crashers for `readelf -a` Files: 4 Errors: 1 Invalid read of size ... 4 Invalid wri

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #107 from Alexander Cherepanov --- Hi Nick, (In reply to Nick Clifton from comment #106) > Doh! Thanks for that. I have applied your patch to the sources. Thanks! -- You are receiving this mail because: You are on the CC list

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #108 from Alexander Cherepanov --- Created attachment 7959 --> https://sourceware.org/bugzilla/attachment.cgi?id=7959&action=edit First bunch of crashers for multiarch `objdump -afphxgGtTrRwW --special-syms` Confugured binutils

[Bug binutils/17636] New: objcopy leaves temporary directory in case of error

Component: binutils Assignee: unassigned at sourceware dot org Reporter: cherepan at mccme dot ru binutils configured with --enable-targets=all. Then `objcopy -O elf64-x86-64 fatmach0-3true out` fails with the message "Unable to change endianness of input file(s)" w

[Bug binutils/17636] objcopy leaves temporary directory in case of error

https://sourceware.org/bugzilla/show_bug.cgi?id=17636 --- Comment #1 from Alexander Cherepanov --- Created attachment 7962 --> https://sourceware.org/bugzilla/attachment.cgi?id=7962&action=edit fatmach0-3true -- You are receiving this mail because: You are on the CC list for the bug. ___

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #40 from Alexander Cherepanov --- Created attachment 7964 --> https://sourceware.org/bugzilla/attachment.cgi?id=7964&action=edit Sample with fishy malloc This one doesn't crash `readelf -agteAruhlsSdIncwVW --dyn-syms -D` but giv

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #112 from Alexander Cherepanov --- Created attachment 7965 --> https://sourceware.org/bugzilla/attachment.cgi?id=7965&action=edit Next crashers for multiarch `objdump -afphxgGtTrRwW --special-syms` Files: 37 Errors: 12 Argu

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #46 from Alexander Cherepanov --- Created attachment 7975 --> https://sourceware.org/bugzilla/attachment.cgi?id=7975&action=edit Crashes for `readelf -agteAruhlsSdIncVWw --dyn-syms -D` Files: 19 Errors: 1 Argument 'size' o

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #115 from Alexander Cherepanov --- Created attachment 7978 --> https://sourceware.org/bugzilla/attachment.cgi?id=7978&action=edit More crashes for `objdump -afphxgGtTrRwW --special-syms` Files: 41 Errors: 20 Argument 'size'

[Bug binutils/17671] New: objcopy/strip don't understand -D/-U options

y: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: cherepan at mccme dot ru Created attachment 7984 --> https://sourceware.org/bugzilla/attachment.cgi?id=7984&action=edit Patch to add "DU" to getopt_long -D/-U, short counterparts for

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #118 from Alexander Cherepanov --- Created attachment 7990 --> https://sourceware.org/bugzilla/attachment.cgi?id=7990&action=edit Crashes for `objdump -afphxgGtTrRwW --special-syms` Files: 11 Errors: 9 Argument 'size' of f

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #49 from Alexander Cherepanov --- Created attachment 7991 --> https://sourceware.org/bugzilla/attachment.cgi?id=7991&action=edit Aborts for `readelf -agteAruhlsSdIncVWw --dyn-syms -D` Files: 4 Errors: 4 No assertion info i

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #119 from Alexander Cherepanov --- (In reply to Nick Clifton from comment #117) > In case it is not obvious, I am not too concerned by the "silly argument > to malloc" warnings from valgrind. I night fix them one day, but for no

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #122 from Alexander Cherepanov --- Created attachment 7993 --> https://sourceware.org/bugzilla/attachment.cgi?id=7993&action=edit More crashes for `objdump -afphxgGtTrRwW --special-syms` elfutils seems to have a nice tests... F

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #52 from Alexander Cherepanov --- Created attachment 7994 --> https://sourceware.org/bugzilla/attachment.cgi?id=7994&action=edit More crashes for `readelf -agteAruhlsSdIncVWw --dyn-syms -D` Files: 18 Errors: 12 Conditional

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #53 from Alexander Cherepanov --- Created attachment 7995 --> https://sourceware.org/bugzilla/attachment.cgi?id=7995&action=edit More aborts for `readelf -agteAruhlsSdIncVWw --dyn-syms -D` Files: 2 Errors: 2 No assertion i

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #125 from Alexander Cherepanov --- Created attachment 8003 --> https://sourceware.org/bugzilla/attachment.cgi?id=8003&action=edit More crashers for `objdump -afphxgGtTrRwW --special-syms` crashes Files: 7 Errors: 26 Invali

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #128 from Alexander Cherepanov --- (In reply to Nick Clifton from comment #127) > (In reply to Alexander Cherepanov from comment #125) > > > Files: 3 > > Errors: > > 3 *** Segmentation fault > > Fixed. Next. :-) fe3b9a79

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #131 from Alexander Cherepanov --- (In reply to Nick Clifton from comment #130) > Intriguing - the fault only happens with an x86_66-pc-linux-gnu toolchain. > I was using one configured for all targets (including x86_64-pc-linux-g

[Bug binutils/17531] readelf -a crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #56 from Alexander Cherepanov --- Created attachment 8019 --> https://sourceware.org/bugzilla/attachment.cgi?id=8019&action=edit AFL crashers for `readelf -agteAruhlsSdIncVWw --dyn-syms -D` crashes Files: 7 Errors: 25 Inva

[Bug binutils/17512] segfault in PE parser / _bfd_pei_swap_aouthdr_in

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #132 from Alexander Cherepanov --- Created attachment 8022 --> https://sourceware.org/bugzilla/attachment.cgi?id=8022&action=edit More crashers for multiarch `objdump -afphxgGtTrRwW --special-syms` crashes (valgrind) Files: 13

[Bug binutils/17531] readelf crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 Alexander Cherepanov changed: What|Removed |Added Summary|readelf -a crashes on |readelf crashes on fuzzed

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 Alexander Cherepanov changed: What|Removed |Added Summary|segfault in PE parser / |libbfd/binutils: crashes on

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #136 from Alexander Cherepanov --- Created attachment 8026 --> https://sourceware.org/bugzilla/attachment.cgi?id=8026&action=edit Crasher for `size` Files: 2 Errors: 4 Conditional jump or move depends on uninitialised valu

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #137 from Alexander Cherepanov --- Created attachment 8027 --> https://sourceware.org/bugzilla/attachment.cgi?id=8027&action=edit Crashers for `nm-new -DClpSs --special-syms --synthetic` valgrind Files: 33 Errors: 12 Condi

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #138 from Alexander Cherepanov --- Created attachment 8028 --> https://sourceware.org/bugzilla/attachment.cgi?id=8028&action=edit Crashers for `coffdump` valgrind Files: 37 Errors: 23 Conditional jump or move depends on un

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #139 from Alexander Cherepanov --- Created attachment 8029 --> https://sourceware.org/bugzilla/attachment.cgi?id=8029&action=edit More problems with `objdump -afphxgGtTrRwW --special-syms` valgrind Files: 1 Errors: 1 Inva

[Bug binutils/17531] readelf crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #59 from Alexander Cherepanov --- Created attachment 8037 --> https://sourceware.org/bugzilla/attachment.cgi?id=8037&action=edit More problems with `readelf -agteAruhlsSdIncVWw --dyn-syms -D` valgrind Files: 5 Errors: 12 I

[Bug binutils/17531] readelf crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #60 from Alexander Cherepanov --- Created attachment 8038 --> https://sourceware.org/bugzilla/attachment.cgi?id=8038&action=edit Big (28MB) problem with `readelf -agteAruhlsSdIncVWw --dyn-syms -D` (Big files. Have to split submi

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #140 from Alexander Cherepanov --- Created attachment 8039 --> https://sourceware.org/bugzilla/attachment.cgi?id=8039&action=edit Problems with `srconv` valgrind Files: 19 Errors: 2 Conditional jump or move depends on uni

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #141 from Alexander Cherepanov --- Created attachment 8040 --> https://sourceware.org/bugzilla/attachment.cgi?id=8040&action=edit Problems with `dlltool -e exp.out -l lib.out -z def.out` valgrind Files: 1 Errors: 260 Invali

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #142 from Alexander Cherepanov --- Created attachment 8041 --> https://sourceware.org/bugzilla/attachment.cgi?id=8041&action=edit Problems with `nlmconv` valgrind Files: 6 Errors: 1 Argument 'size' of function malloc has

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #143 from Alexander Cherepanov --- Created attachment 8042 --> https://sourceware.org/bugzilla/attachment.cgi?id=8042&action=edit Problems with `sysdump` valgrind Files: 4 Errors: 34 Conditional jump or move depends on uni

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #144 from Alexander Cherepanov --- Created attachment 8043 --> https://sourceware.org/bugzilla/attachment.cgi?id=8043&action=edit Problems with `strip-new` valgrind Files: 20 Errors: 13 Conditional jump or move depends on

[Bug binutils/17531] readelf crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #63 from Alexander Cherepanov --- Created attachment 8060 --> https://sourceware.org/bugzilla/attachment.cgi?id=8060&action=edit Problems with `readelf -agteAruhlsSdIncVWw --dyn-syms -D` Files: 1 Errors: 4 Conditional jump

[Bug binutils/17531] readelf crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #64 from Alexander Cherepanov --- Created attachment 8061 --> https://sourceware.org/bugzilla/attachment.cgi?id=8061&action=edit Problems with `readelf -agteAruhlsSdIncVWw --dyn-syms -D` Files: 1 Errors: 6 Conditional jump

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #164 from Alexander Cherepanov --- Created attachment 8062 --> https://sourceware.org/bugzilla/attachment.cgi?id=8062&action=edit Problems with `objdump -afphxgGtTrRwW --special-syms` valgrind Files: 8 Errors: 8 Invalid r

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #167 from Alexander Cherepanov --- Created attachment 8067 --> https://sourceware.org/bugzilla/attachment.cgi?id=8067&action=edit Problems with `coffdump` valgrind Files: 3 Errors: 2 Invalid read of size ... 2 Proce

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #168 from Alexander Cherepanov --- Created attachment 8069 --> https://sourceware.org/bugzilla/attachment.cgi?id=8069&action=edit Problems with `strip-new` Files: 3 Errors: 10 Conditional jump or move depends on uninitialis

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #169 from Alexander Cherepanov --- Created attachment 8070 --> https://sourceware.org/bugzilla/attachment.cgi?id=8070&action=edit Problems with `nlmconv` Files: 4 Errors: 1 Argument 'size' of function malloc has a fishy (p

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #170 from Alexander Cherepanov --- Created attachment 8071 --> https://sourceware.org/bugzilla/attachment.cgi?id=8071&action=edit Problems with `dlltool -e /dev/null -l /dev/null -z /dev/null` Files: 2 Errors: 21 Invalid re

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #178 from Alexander Cherepanov --- Created attachment 8081 --> https://sourceware.org/bugzilla/attachment.cgi?id=8081&action=edit Problems with `dlltool -I` valgrind Files: 2 Errors: 19 Invalid read of size ... 1 Inv

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #179 from Alexander Cherepanov --- Created attachment 8084 --> https://sourceware.org/bugzilla/attachment.cgi?id=8084&action=edit Problems with `addr2line -ie @@ 0` Files: 7 Errors: 1 Conditional jump or move depends on un

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #180 from Alexander Cherepanov --- Created attachment 8085 --> https://sourceware.org/bugzilla/attachment.cgi?id=8085&action=edit Problems with `windres` Files: 27 Errors: 8 Conditional jump or move depends on uninitialise

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #187 from Alexander Cherepanov --- Created attachment 8094 --> https://sourceware.org/bugzilla/attachment.cgi?id=8094&action=edit Problems with `objdump -afphxgGtTrRwW --special-syms` (32-bit) More problems found with 32-bit bin

[Bug binutils/17531] readelf crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #70 from Alexander Cherepanov --- Created attachment 8095 --> https://sourceware.org/bugzilla/attachment.cgi?id=8095&action=edit Problems with `readelf -agteAruhlsSdIncVWw --dyn-syms -D` (32-bit) More problems found with 32-bit

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #190 from Alexander Cherepanov --- Created attachment 8098 --> https://sourceware.org/bugzilla/attachment.cgi?id=8098&action=edit Problems with `nm-new -DClpSs --special-syms --synthetic` (32-bit) valgrind Files: 73 Errors:

[Bug binutils/17531] readelf crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #73 from Alexander Cherepanov --- Hi Nick, (In reply to Nick Clifton from comment #72) > > Problems with `readelf -agteAruhlsSdIncVWw --dyn-syms -D` (32-bit) > > More problems found with 32-bit binutils: built with -m32 on 64-bit

[Bug binutils/17531] readelf crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #76 from Alexander Cherepanov --- Created attachment 8102 --> https://sourceware.org/bugzilla/attachment.cgi?id=8102&action=edit Problems with `readelf -agteAruhlsSdIncVWw --dyn-syms -D` (32-bit) Files: 2 Errors: 8 Conditi

[Bug binutils/17512] libbfd/binutils: crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17512 --- Comment #192 from Alexander Cherepanov --- (In reply to Nick Clifton from comment #191) > > Problems with `nm-new -DClpSs --special-syms --synthetic` (32-bit) > I could not reproduce these failures. :-{ Maybe they have already been > fix

[Bug binutils/17531] readelf crashes on fuzzed samples

https://sourceware.org/bugzilla/show_bug.cgi?id=17531 --- Comment #77 from Alexander Cherepanov --- (In reply to Nick Clifton from comment #75) > Fascinating. Valgrind was actually preventing the seg-faults from > occurring. I would never have suspected that. It happens sometimes, and it's k

  1   2   >