|
From: | cvs-commit at gcc dot gnu.org |
Subject: | [Bug binutils/21665] Multiple heap based buffer overflow in the objdump tool of the GNU Binutils. |
Date: | Mon, 26 Jun 2017 16:31:33 +0000 |
https://sourceware.org/bugzilla/show_bug.cgi?id=21665 --- Comment #4 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot gnu.org> --- The master branch has been updated by H.J. Lu <address@hidden>: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=0630b49c470ca2e3c3f74da4c7e4ff63440dd71f commit 0630b49c470ca2e3c3f74da4c7e4ff63440dd71f Author: H.J. Lu <address@hidden> Date: Mon Jun 26 09:24:49 2017 -0700 Check file size before getting section contents Don't check the section size in bfd_get_full_section_contents since the size of a decompressed section may be larger than the file size. Instead, check file size in _bfd_generic_get_section_contents. PR binutils/21665 * compress.c (bfd_get_full_section_contents): Don't check the file size here. * libbfd.c (_bfd_generic_get_section_contents): Check for and reject a section whoes size + offset is greater than the size of the entire file. (_bfd_generic_get_section_contents_in_window): Likewise. -- You are receiving this mail because: You are on the CC list for the bug.
[Prev in Thread] | Current Thread | [Next in Thread] |