|
From: | cvs-commit at gcc dot gnu.org |
Subject: | [Bug binutils/21665] Multiple heap based buffer overflow in the objdump tool of the GNU Binutils. |
Date: | Mon, 26 Jun 2017 14:26:36 +0000 |
https://sourceware.org/bugzilla/show_bug.cgi?id=21665 --- Comment #1 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot gnu.org> --- The master branch has been updated by Nick Clifton <address@hidden>: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=cfd14a500e0485374596234de4db10e88ebc7618 commit cfd14a500e0485374596234de4db10e88ebc7618 Author: Nick Clifton <address@hidden> Date: Mon Jun 26 15:25:08 2017 +0100 Fix address violations when atempting to parse fuzzed binaries. PR binutils/21665 bfd * opncls.c (get_build_id): Check that the section is beig enough to contain the whole note. * compress.c (bfd_get_full_section_contents): Check for and reject a section whoes size is greater than the size of the entire file. * elf32-v850.c (v850_elf_copy_notes): Allow for the ouput to not contain a notes section. binutils* objdump.c (disassemble_section): Skip any section that is bigger than the entire file. -- You are receiving this mail because: You are on the CC list for the bug.
[Prev in Thread] | Current Thread | [Next in Thread] |