This is the mail archive of the elfutils-devel@sourceware.org mailing list for the elfutils project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

[Bug tools/21300] heap-based buffer overflow in ebl_object_note_type_name (eblobjnotetypename.c)

From: "mark at klomp dot org" <sourceware-bugzilla at sourceware dot org>
To: elfutils-devel at sourceware dot org
Date: Mon, 03 Apr 2017 21:51:18 +0000
Subject: [Bug tools/21300] heap-based buffer overflow in ebl_object_note_type_name (eblobjnotetypename.c)
Auto-submitted: auto-generated
References: <bug-21300-10460@http.sourceware.org/bugzilla/>

https://sourceware.org/bugzilla/show_bug.cgi?id=21300

Mark Wielaard <mark at klomp dot org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|UNCONFIRMED                 |RESOLVED
                 CC|                            |mark at klomp dot org
         Resolution|---                         |FIXED

--- Comment #3 from Mark Wielaard <mark at klomp dot org> ---
commit b0b58c5e0b34e54194aa042f2310af58ee7de603
Author: Mark Wielaard <mark@klomp.org>
Date:   Fri Mar 24 14:10:26 2017 +0100

    Use the empty string for note names with zero size (without any data).

    ELF notes can have a zero sized name. In which case there is no data at
    all (so also no zero terminator). Make sure to use the empty string for
    such notes if the code does not otherwise explicitly check n_namesz.

    https://sourceware.org/bugzilla/show_bug.cgi?id=21300

    Signed-off-by: Mark Wielaard <mark@klomp.org>

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]