https://sourceware.org/bugzilla/show_bug.cgi?id=28169
Bug ID: 28169
Summary: objdump -D : stack-overflow
Product: binutils
Version: 2.38 (HEAD)
Status: UNCONFIRMED
Severity: normal
Priority: P2
Component: binutils
Assignee: unassigned at sourceware dot org
Reporter: shaohua.li at inf dot ethz.ch
Target Milestone: ---
Created attachment 13580
--> https://sourceware.org/bugzilla/attachment.cgi?id=13580&action=edit
poc
Hi there,
I found a stack-overflow in `objdump -D` with a fuzzer.
- binutils version: 2.38(Head), commit af51804103a08cd1e12edc4f4a30eec2c5c4f9e8
- Compiler: clang12
- Platform: Ubuntu 18.04.5 LTS, x86_64
- Reproduce: run `objdump -D poc`
AddressSanitizer report:
==398==ERROR: AddressSanitizer: stack-overflow on address 0x7ffecc585f60 (pc
0x00000071393a bp 0x7ffecc586170 sp 0x7ffecc585f60 T0)
#0 0x71393a in ft32_decode_shortcode
/binutils_latest/repo/opcodes/./../include/opcode/ft32.h:408
#1 0x712ce0 in ft32_opcode /binutils_latest/repo/opcodes/ft32-dis.c:54:7
#2 0x712d5b in ft32_opcode /binutils_latest/repo/opcodes/ft32-dis.c:56:7
SUMMARY: AddressSanitizer: stack-overflow
/binutils_latest/repo/opcodes/./../include/opcode/ft32.h:408 in
ft32_decode_shortcode
==398==ABORTING
--
You are receiving this mail because:
You are on the CC list for the bug.
