Blame SOURCES/binutils-CVE-2018-7642.patch

13ae24
--- binutils.orig/bfd/aoutx.h	2018-04-26 15:14:18.411450291 +0100
13ae24
+++ binutils-2.30/bfd/aoutx.h	2018-04-26 17:22:38.328770529 +0100
13ae24
@@ -2283,10 +2283,12 @@ NAME (aout, swap_std_reloc_in) (bfd *abf
13ae24
   if (r_baserel)
13ae24
     r_extern = 1;
13ae24
 
13ae24
-  if (r_extern && r_index > symcount)
13ae24
+  if (r_extern && r_index >= symcount)
13ae24
     {
13ae24
       /* We could arrange to return an error, but it might be useful
13ae24
-	 to see the file even if it is bad.  */
13ae24
+	 to see the file even if it is bad.  FIXME: Of course this
13ae24
+	 means that objdump -r *doesn't* see the actual reloc, and
13ae24
+	 objcopy silently writes a different reloc.  */
13ae24
       r_extern = 0;
13ae24
       r_index = N_ABS;
13ae24
     }