rpms / gcc-toolset-9-binutils

Clone
Source Code
GIT

Blame SOURCES/binutils-CVE-2019-17451.patch

c8 c8-beta c8s
  1.   eeb5bc939fd2b771a58b7cea86c7125f725a1ae7
  2.   SOURCES
  3.   binutils-CVE-2019-17451.patch
Blob History Raw
eeb5bc 
--- binutils.orig/bfd/dwarf2.c	2019-11-13 11:32:09.395430104 +0000
eeb5bc 
+++ binutils-2.33.1/bfd/dwarf2.c	2019-11-13 11:33:17.272899503 +0000
eeb5bc 
@@ -4440,7 +4440,16 @@ _bfd_dwarf2_slurp_debug_info (bfd *abfd,
eeb5bc 
       for (total_size = 0;
eeb5bc 
 	   msec;
eeb5bc 
 	   msec = find_debug_info (debug_bfd, debug_sections, msec))
eeb5bc 
-	total_size += msec->size;
eeb5bc 
+       {
eeb5bc 
+         /* Catch PR25070 testcase overflowing size calculation here.  */
eeb5bc 
+         if (total_size + msec->size < total_size
eeb5bc 
+             || total_size + msec->size < msec->size)
eeb5bc 
+           {
eeb5bc 
+             bfd_set_error (bfd_error_no_memory);
eeb5bc 
+             return FALSE;
eeb5bc 
+           }
eeb5bc 
+         total_size += msec->size;
eeb5bc 
+       }
eeb5bc
eeb5bc 
       stash->info_ptr_memory = (bfd_byte *) bfd_malloc (total_size);
eeb5bc 
       if (stash->info_ptr_memory == NULL)

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation