[Bug binutils/24921] New: A floating point exception in process_cu_tu

bug-binutils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug binutils/24921] New: A floating point exception in process_cu_tu_in

From:	mgcho.minic at gmail dot com
Subject:	[Bug binutils/24921] New: A floating point exception in process_cu_tu_index
Date:	Tue, 20 Aug 2019 20:59:11 +0000

https://sourceware.org/bugzilla/show_bug.cgi?id=24921

            Bug ID: 24921
           Summary: A floating point exception in process_cu_tu_index
           Product: binutils
           Version: 2.33 (HEAD)
            Status: UNCONFIRMED
          Severity: normal
          Priority: P2
         Component: binutils
          Assignee: unassigned at sourceware dot org
          Reporter: mgcho.minic at gmail dot com
  Target Milestone: ---

Created attachment 11955
  --> https://sourceware.org/bugzilla/attachment.cgi?id=11955&action=edit
Poc to trigger bug

Triggered by "./readelf -w $POC"
Tested on Ubuntu 16.04

A floating point exception occurred when processing malformed input.

configuration: 

CC=clang-5.0 CFLAGS="-m32 -Wextra -Wno-missing-field-initializers
-fsanitize=address -fno-omit-frame-pointer -g" CXX=clang++-5.0 CXXFLAGS="-m32"
./configure --disable-gdb --disable-gold --disable-gas --disable-gprof

ASAN output:

==221964==ERROR: AddressSanitizer: FPE on unknown address 0x081fc7f8 (pc
0x081fc7f8 bp 0xff8a5c88 sp 0xff8a5ae0 T0)
    #0 0x81fc7f7 in process_cu_tu_index
/home/seclab/binutils-gdb/binutils/dwarf.c:9415:34
    #1 0x81cd9fa in load_cu_tu_indexes
/home/seclab/binutils-gdb/binutils/dwarf.c:9605:8
    #2 0x81cd9fa in find_cu_tu_set
/home/seclab/binutils-gdb/binutils/dwarf.c:9623
    #3 0x8190e3b in display_debug_section
/home/seclab/binutils-gdb/binutils/readelf.c:14289:25
    #4 0x8190e3b in process_section_contents
/home/seclab/binutils-gdb/binutils/readelf.c:14382
    #5 0x817e390 in process_object
/home/seclab/binutils-gdb/binutils/readelf.c:19852:9
    #6 0x8165630 in process_file
/home/seclab/binutils-gdb/binutils/readelf.c:20282:13
    #7 0x8165630 in main /home/seclab/binutils-gdb/binutils/readelf.c:20341
    #8 0xf7583636 in __libc_start_main
/build/glibc-GoSbp4/glibc-2.23/csu/../csu/libc-start.c:291
    #9 0x8064587 in _start
(/home/seclab/binutils-gdb/binutils/readelf+0x8064587)

Credits:

Mingi Cho, Seoyoung Kim, and Taekyoung Kwon of the Information Security Lab,
Yonsei University.

-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Prev in Thread]

Current Thread

[Next in Thread]

[Bug binutils/24921] New: A floating point exception in process_cu_tu_index, mgcho.minic at gmail dot com <=
- [Bug binutils/24921] A floating point exception in process_cu_tu_index, cvs-commit at gcc dot gnu.org, 2019/08/22
- [Bug binutils/24921] A floating point exception in process_cu_tu_index, nickc at redhat dot com, 2019/08/22

Prev by Date: [Bug binutils/24898] An out-of-bounds read occured in display_data
Next by Date: [Bug binutils/24922] New: An out-of-bounds read in pex64_xdata_print_uwd_codes
Previous by thread: [Bug ld/24920] New: Executable produces nonsensical error message after statically linking with trying to link in a dynamic library.
Next by thread: [Bug binutils/24921] A floating point exception in process_cu_tu_index
Index(es):
- Date
- Thread