https://sourceware.org/bugzilla/show_bug.cgi?id=27071
Bug ID: 27071
Summary: Multiple bugs in GNU assembler
Product: binutils
Version: 2.35.1
Status: UNCONFIRMED
Severity: normal
Priority: P2
Component: gas
Assignee: unassigned at sourceware dot org
Reporter: sirus.shahini at gmail dot com
Target Milestone: ---
Created attachment 13051
--> https://sourceware.org/bugzilla/attachment.cgi?id=13051&action=edit
Compressed archive of three crashing inputs
Hello,
During development and evaluation of our fuzzer we found multiple bugs in GNU
assembler. I have attached 3 inputs that can crash the latest version of the
assembler because of these issues:
1- Integer overflow, heap overflow and heap corruption in 'gas/listing.c'.
2- Invalid pointer dereference in 'gas/symbols.c'.
3- Double free and heap corruption in 'gas/config/obj-elf.c'.
The first input (crash000_opt_a_SIGSEGV) needs '-a' argument to cause the
crash.
--
You are receiving this mail because:
You are on the CC list for the bug.
