Comment #1 on issue 40330 by amo...@
gmail.com: binutils:fuzz_as: Stack-use-after-return in as_bad_internal
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40330#c1This is not a exactly a problem with the assembler. This is a fuzzer issue. On the second and subseqent runs of binutils/fuzz_as.c:LLVMFuzzerTestOneInput perform_as_assembly_pass is being run with gas global variables holding info from the previous run, not initialised as they would be when actually running gas.
For this particular fuzzing report, the gas variable in question is
static struct conditional_frame *current_cframe = NULL;
in gas/cond.c, and there are many similar variables.
--
You received this message because:
1. You were specifically CC'd on the issue
You may adjust your notification preferences at:
https://bugs.chromium.org/hosting/settingsReply to this email to add a comment.