Blame SOURCES/binutils-CVE-2018-7642.patch

869a11
--- binutils.orig/bfd/aoutx.h	2018-04-26 15:14:18.411450291 +0100
869a11
+++ binutils-2.30/bfd/aoutx.h	2018-04-26 17:22:38.328770529 +0100
869a11
@@ -2283,10 +2283,12 @@ NAME (aout, swap_std_reloc_in) (bfd *abf
869a11
   if (r_baserel)
869a11
     r_extern = 1;
869a11
 
869a11
-  if (r_extern && r_index > symcount)
869a11
+  if (r_extern && r_index >= symcount)
869a11
     {
869a11
       /* We could arrange to return an error, but it might be useful
869a11
-	 to see the file even if it is bad.  */
869a11
+	 to see the file even if it is bad.  FIXME: Of course this
869a11
+	 means that objdump -r *doesn't* see the actual reloc, and
869a11
+	 objcopy silently writes a different reloc.  */
869a11
       r_extern = 0;
869a11
       r_index = N_ABS;
869a11
     }