[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Bug binutils/27295] Unsafe strcmp() causing arbitrary read primitive an
|
From: |
amodra at gmail dot com |
|
Subject: |
[Bug binutils/27295] Unsafe strcmp() causing arbitrary read primitive and potential privacy impact in elf32_avr_get_note_desc() |
|
Date: |
Thu, 11 Feb 2021 04:41:51 +0000 |
https://sourceware.org/bugzilla/show_bug.cgi?id=27295
Alan Modra <amodra at gmail dot com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Ever confirmed|0 |1
Status|UNCONFIRMED |ASSIGNED
Assignee|unassigned at sourceware dot org |amodra at gmail dot com
Severity|critical |normal
Last reconfirmed| |2021-02-11
--- Comment #1 from Alan Modra <amodra at gmail dot com> ---
None of the unsigned integer overflows result in undefined behaviour, but yes,
there should be a test in.namesz != 4.
--
You are receiving this mail because:
You are on the CC list for the bug.
- [Bug binutils/27295] Unsafe strcmp() causing arbitrary read primitive and potential privacy impact in elf32_avr_get_note_desc(),
amodra at gmail dot com <=