[Bug binutils/32502] New: stack-overflow in string_append

cx23698741 at gmail dot com Thu, 26 Dec 2024 06:57:17 -0800

https://sourceware.org/bugzilla/show_bug.cgi?id=32502


            Bug ID: 32502
           Summary: stack-overflow in string_append
           Product: binutils
           Version: 2.43
            Status: UNCONFIRMED
          Severity: normal
          Priority: P2
         Component: binutils
          Assignee: unassigned at sourceware dot org
          Reporter: cx23698741 at gmail dot com
  Target Milestone: ---

Created attachment 15860
  --> https://sourceware.org/bugzilla/attachment.cgi?id=15860&action=edit
poc_file

stack-overflow in nm-new.

uname -a
Linux cas-PC 5.4.0-144-generic #161~18.04.1-Ubuntu SMP Fri Feb 10 15:55:22 UTC
2023 x86_64 GNU/Linux

clang --version
clang version 12.0.1
Target: x86_64-unknown-linux-gnu
Thread model: posix
InstalledDir: /usr/local/bin

build command:CC=clang CXX=clang++ CFLAGS="-fsanitize=address,undefined -fPIC
-g -O0" CXXFLAGS="-fsanitize=address,undefined -fPIC -g -O0" ./configure
--enable-static --disable-shared

./nm-new -C crashes/poc
00000000 A B$
00000000 A
B$aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaafaa_numeric_traits_TntegRYAI_m_a
00000000 A B$aaaaaaaaaaaaaaRYAB@a
00000000 A _D9____NR_IAYFaCaawaJaacaDDDDDDDD_a
00000000 A _D9____NR_IAYRRRRRRRPRRbaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaLaacaEa
00000000 A
_D9____yyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyy�NRYAIKAyyyyyyyyyyaaaaa_RYBaca_aRYAB@a
AddressSanitizer:DEADLYSIGNAL
=================================================================
==26323==ERROR: AddressSanitizer: stack-overflow on address 0x7fffff7fecd8 (pc
0x00000042e0d3 bp 0x7fffff7ff520 sp 0x7fffff7fece0 T0)
    #0 0x42e0d3 in strlen
/home/cas/chenxu/llvm/llvm-project-release-12.x/compiler-rt/lib/asan/../sanitizer_common/sanitizer_common_interceptors.inc
    #1 0xe79d59 in string_append
/home/cas/testbench/compile-g-asan/binutils-2.43/libiberty/./d-demangle.c:130:14
    #2 0xe7bfa3 in dlang_type
/home/cas/testbench/compile-g-asan/binutils-2.43/libiberty/./d-demangle.c:771:7
    #3 0xe7bfbd in dlang_type
/home/cas/testbench/compile-g-asan/binutils-2.43/libiberty/./d-demangle.c:772:17
    #4 0xe7bfbd in dlang_type
/home/cas/testbench/compile-g-asan/binutils-2.43/libiberty/./d-demangle.c:772:17
    #5 0xe7bfbd in dlang_type
/home/cas/testbench/compile-g-asan/binutils-2.43/libiberty/./d-demangle.c:772:17
    #6 0xe7bfbd in dlang_type
/home/cas/testbench/compile-g-asan/binutils-2.43/libiberty/./d-demangle.c:772:17
    #7 0xe7bfbd in dlang_type
/home/cas/testbench/compile-g-asan/binutils-2.43/libiberty/./d-demangle.c:772:17
    #8 0xe7bfbd in dlang_type
/home/cas/testbench/compile-g-asan/binutils-2.43/libiberty/./d-demangle.c:772:17
    #9 0xe7bfbd in dlang_type
/home/cas/testbench/compile-g-asan/binutils-2.43/libiberty/./d-demangle.c:772:17
    #10 0xe7bfbd in dlang_type
/home/cas/testbench/compile-g-asan/binutils-2.43/libiberty/./d-demangle.c:772:17
......
SUMMARY: AddressSanitizer: stack-overflow
/home/cas/chenxu/llvm/llvm-project-release-12.x/compiler-rt/lib/asan/../sanitizer_common/sanitizer_common_interceptors.inc
in strlen
==26323==ABORTING

-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Bug binutils/32502] New: stack-overflow in string_append

Reply via email to