[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Bug ld/30560] New: Heap-buffer-overflow (SEGV) in elf_x86_64_relocate_s
From: |
gjduck at gmail dot com |
Subject: |
[Bug ld/30560] New: Heap-buffer-overflow (SEGV) in elf_x86_64_relocate_section() |
Date: |
Fri, 16 Jun 2023 12:15:13 +0000 |
https://sourceware.org/bugzilla/show_bug.cgi?id=30560
Bug ID: 30560
Summary: Heap-buffer-overflow (SEGV) in
elf_x86_64_relocate_section()
Product: binutils
Version: 2.41 (HEAD)
Status: UNCONFIRMED
Severity: normal
Priority: P2
Component: ld
Assignee: unassigned at sourceware dot org
Reporter: gjduck at gmail dot com
Target Milestone: ---
Created attachment 14932
--> https://sourceware.org/bugzilla/attachment.cgi?id=14932&action=edit
Test case
The attached file apparently causes LD/libbfd to crash (SEGV, heap
out-of-bounds read):
$ ld ld-poc.o
./ld: warning: cannot find entry symbol _start; defaulting to
0000000000401000
Segmentation fault
I've tested ld-2.40 and ld-2.41 (HEAD) built from source, as well as the system
ld-2.40-2ubuntu4.1, all with the same result.
This appears related to the older bug:
https://sourceware.org/bugzilla/show_bug.cgi?id=24338
However, both POC and POC2 from 24338 no longer cause LD to crash.
--
You are receiving this mail because:
You are on the CC list for the bug.
- [Bug ld/30560] New: Heap-buffer-overflow (SEGV) in elf_x86_64_relocate_section(),
gjduck at gmail dot com <=