Public bug reported:
Binary package hint: binutils
readelf crashes very easily when parsing malformed binaries. The
attached patch fixes three floating point exceptions (divide-by-zero)
and approximately 13 out-of-bounds reads (due to null pointer
dereference, integer overflows, and bad array indexing). I have test
files that trigger each of these crashes, but the patch should be pretty
self-explanatory. I've tested the patch, confirmed it breaks no
functionality, and that it resolves each of my crash files. I'm not
flagging security since none of these crashes appear to be exploitable
for anything beyond crashing readelf.
Let me know if you'd like me to send this upstream or if you're going to
take care of it.
** Affects: binutils (Ubuntu)
Importance: Undecided
Status: New
--
readelf: fixes for multiple crashes
https://bugs.launchpad.net/bugs/614206
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
