bug-binutils
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug binutils/22113] Heap out of bounds read in bfd_getl16()

From: cvs-commit at gcc dot gnu.org
Subject: [Bug binutils/22113] Heap out of bounds read in bfd_getl16()
Date: Tue, 13 Mar 2018 14:04:37 +0000 
https://sourceware.org/bugzilla/show_bug.cgi?id=22113

--- Comment #6 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot 
gnu.org> ---
The master branch has been updated by Nick Clifton <address@hidden>:

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=3e33b239450771394fa6c83b67b9de80169f35e8

commit 3e33b239450771394fa6c83b67b9de80169f35e8
Author: Nick Clifton <address@hidden>
Date:   Tue Mar 13 14:02:52 2018 +0000

    Prevent memory access violations when attempting to parse an x86_64 PE
binary containing corrupt unwind information.

        PR 22113
    incldue     * coff/pe.h (struct pex64_unwind_info): Add a rawUnwindCodesEnd
        field.

    bfd * pei-x86_64.c (pex64_get_unwind_info): Change to a boolean
        function.  Add an end address parameter.  Check access of the data
        pointer to make sure that they do not extend beyond the end
        address.  Return FALSE if any check fails.  Add the end address
        pointer to the ui structure.
        (pex64_xdata_print_uwd_codes): Check accesses of the raw unwind
        codes to make sure that they do not extend beyond the end address
        pointer.  Print an error message and return immediately if any
        check fails.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
reply via email to
[Prev in Thread] Current Thread [Next in Thread]