[Bug tools/33003] Bus Error Vulnerability in eu-strip due to Invalid Memory Write

hmeyer.eu at gmail dot com Sun, 01 Jun 2025 14:12:33 -0700

https://sourceware.org/bugzilla/show_bug.cgi?id=33003


Henning Meyer <hmeyer.eu at gmail dot com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |hmeyer.eu at gmail dot com

--- Comment #4 from Henning Meyer <hmeyer.eu at gmail dot com> ---
I was able to reproduce the SIGBUS with the provided input on elfutils 0.192.
The SIGBUS is a red herring.

Section 5 in the provided input has an alignment of 0x10000000000.
This causes this line in elf32_updatenull.c function updatenull_wrlock
(line 371 in my checkout)
 size = (size + sh_align - 1) & ~(sh_align - 1);

to return a size of 0x10000000000 plus change.

Everything else is a consequence of mmaping and writing a file of that size

-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Bug tools/33003] Bus Error Vulnerability in eu-strip due to Invalid Memory Write

Reply via email to