[Bug binutils/29230] New: nm-new segv in lookup_symbol_in_variable_table:dwarf2.c:3303

: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 14135 --> https://sourceware.org/bugzilla/attachment.cgi?id=14135&action=edit poc On th

[Bug binutils/29231] New: objdump crashes on show_line:objdump.c:1958

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 14136 --> https://sourceware.org/bugzilla/attachment.cgi?id=14136&action=edit poc On the given poc file, `objdump -S`

[Bug binutils/28691] New: `nm-new -l` output changes per run

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13847 --> https://sourceware.org/bugzilla/attachment.cgi?id=13847&action=edit output_change_per_run Hi there, I compiled binuti

[Bug binutils/28690] New: `nm-new -a -l -D` produces inconsistent outputs.

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13846 --> https://sourceware.org/bugzilla/attachment.cgi?id=13846&action=edit nm-new_diff Hi there, I compiled `b

[Bug binutils/28674] New: objdump crashed when compiled with `clang-13 -O0`

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13831 --> https://sourceware.org/bugzilla/attachment.cgi?id=13831&action=edit poc_clang-O0 Hi there, I crashed `obj

[Bug binutils/28662] New: use-of-uninitialized-value in dwarf2.c:read_ranges

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13827 --> https://sourceware.org/bugzilla/attachment.cgi?id=13827&action=edit uninitialize_poc Hi there, I found an

[Bug binutils/28652] New: `nm-new -l -D` produces inconsistent results

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13821 --> https://sourceware.org/bugzilla/attachment.cgi?id=13821&action=edit diff_0 Hi there, I compiled two vers

[Bug binutils/28645] New: Assertion `(p) <= (limit)' failed.

omponent: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13814 --> https://sourceware.org/bugzilla/attachment.cgi?id=13814&action=edit assertion_poc Hi there, I crashed `readelf -w

[Bug binutils/28564] New: sysdump: stack-buffer-overflow in sysdump.c:65

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13769 --> https://sourceware.org/bugzilla/attachment.cgi?id=13769&action=edit poc_0 Hi there, I found a stack-buffer-o

[Bug binutils/28543] New: readelf entered an infinite loop

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13759 --> https://sourceware.org/bugzilla/attachment.cgi?id=13759&action=edit infinite_loop Hi there, For the provided input file, `

[Bug binutils/28542] New: Undefined behaviours in readelf.c

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13758 --> https://sourceware.org/bugzilla/attachment.cgi?id=13758&action=edit poc_undefined Hi there, I compiled binutils (git Hea

[Bug binutils/28541] unstable cie attribute in the output of readelf

https://sourceware.org/bugzilla/show_bug.cgi?id=28541 --- Comment #1 from Shaohua Li --- BTW, address, undefined, and memory sanitisers didn't complain. -- You are receiving this mail because: You are on the CC list for the bug.

[Bug binutils/28541] New: unstable cie attribute in the output of readelf

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13757 --> https://sourceware.org/bugzilla/attachment.cgi?id=13757&action=edit diff_cie.o Hi there, I found that, f

[Bug binutils/28530] Hang in objdump

https://sourceware.org/bugzilla/show_bug.cgi?id=28530 --- Comment #4 from Shaohua Li --- I noticed at the end of your output "Reading section .debug_frame failed because: memory exhausted", but in my machine (it's a server actually, so it has a huge memory), I didn't get this info, objdump just h

[Bug binutils/28530] Hang in objdump

https://sourceware.org/bugzilla/show_bug.cgi?id=28530 --- Comment #2 from Shaohua Li --- Well, for the default configuration, it indeed ended if given a long enough time. But it seems to take a much longer time than expected. I found this issue with a "-O0" compiled binary. If you compile with "

[Bug binutils/28530] New: Hang in objdump

Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13752 --> https://sourceware.org/bugzilla/attachment.cgi?id=13752&action=edit hang.o Hi there, For the provided test case, `objdump -D` would hang

[Bug binutils/28518] New: objdump : signed integer overflow & free on unmalloced address

rity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13745 --> https://sourceware.org/bugzilla/attachment.cgi?id=13745&action=edit poc

[Bug binutils/28517] New: objdump SEGV

Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13744 --> https://sourceware.org/bugzilla/attachment.cgi?id=13744&action=edit poc_segv Hi there, I found a SEGV on `objdump -S` with a fuzzer. - C

[Bug binutils/28516] New: Error message produced by Objdump changed per run

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13743 --> https://sourceware.org/bugzilla/attachment.cgi?id=13743&action=edit diff.o Hi, For some inputs, `objdump

[Bug binutils/28307] New: nm-new: SEGV caused by a WRITE memory access

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13651 --> https://sourceware.org/bugzilla/attachment.cgi?id=13651&action=edit poc Hi there, I crashed `nm-new -l` with a

[Bug binutils/28306] New: nm-new: null pointer dereference in bfd_getl16

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13650 --> https://sourceware.org/bugzilla/attachment.cgi?id=13650&action=edit dereference_poc Hi there, I found a dere

[Bug binutils/28305] New: ojbjdump: heap-buffer-overflow in xtensa_insnbuf_from_chars

: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13649 --> https://sourceware.org/bugzilla/attachment.cgi?id=13649&action=edit heap_poc H

[Bug binutils/28304] New: objdump crashes in bfd_get_symcount

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13648 --> https://sourceware.org/bugzilla/attachment.cgi?id=13648&action=edit poc Hi there, I crashed `objdump -S` with a

[Bug binutils/28303] New: objdump crashes in riscv_elf_add_sub_reloc

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13647 --> https://sourceware.org/bugzilla/attachment.cgi?id=13647&action=edit poc Hi there, I crashed `objdump -S` with a

[Bug binutils/28179] New: Segment fault on `nm-new -a`

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13588 --> https://sourceware.org/bugzilla/attachment.cgi?id=13588&action=edit poc Hi there, I crashed `nm-new -a` with a fuzzer. - b

[Bug binutils/28178] global-buffer-overflow on `nm-new -l`

https://sourceware.org/bugzilla/show_bug.cgi?id=28178 --- Comment #1 from Shaohua Li --- Sorry, this issue should be duplicate to https://sourceware.org/bugzilla/show_bug.cgi?id=28165 -- You are receiving this mail because: You are on the CC list for the bug.

[Bug binutils/28178] New: global-buffer-overflow on `nm-new -l`

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13587 --> https://sourceware.org/bugzilla/attachment.cgi?id=13587&action=edit poc Hi there, I found a global-buffer-overflow on

[Bug binutils/28176] New: Floating point exception on `nm-new -l`

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13586 --> https://sourceware.org/bugzilla/attachment.cgi?id=13586&action=edit poc Hi there, I found a FPE (floating point ex

[Bug binutils/28175] New: Segment fault on `nm-new -a -l`

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13585 --> https://sourceware.org/bugzilla/attachment.cgi?id=13585&action=edit poc Hi there, I crashed `nm-new -a -l` with a

[Bug binutils/28174] New: Segment fault due to null pointer dereference in `nm-new -l`

: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13584 --> https://sourceware.org/bugzilla/attachment.cgi?id=13584&action=edit poc Hi th

[Bug binutils/28173] New: global-buffer-overflow on `nm-new -l`

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13583 --> https://sourceware.org/bugzilla/attachment.cgi?id=13583&action=edit poc Hi there, I found a global-buffer-overflow on

[Bug binutils/28172] New: heap-buffer-overflow on `nm-new -a -l`

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13582 --> https://sourceware.org/bugzilla/attachment.cgi?id=13582&action=edit poc Hi there, I found a heap-buffer-overflow on

[Bug binutils/28171] New: stack-overflow on `nm-new -C`

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13581 --> https://sourceware.org/bugzilla/attachment.cgi?id=13581&action=edit poc Hi there, I found a stack-overflow on `nm-new -C`

[Bug binutils/28169] New: objdump -D : stack-overflow

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13580 --> https://sourceware.org/bugzilla/attachment.cgi?id=13580&action=edit poc Hi there, I found a stack-overflow in `objdump -D` with a

[Bug binutils/28168] New: objdump -S: stack-buffer-overflow

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13579 --> https://sourceware.org/bugzilla/attachment.cgi?id=13579&action=edit poc Hi there, I found a stack-buffer-overflow in `obj

[Bug binutils/28167] New: objdump: heap-buffer-overflow on bfd_getl32 in libbfd.c:727

: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13578 --> https://sourceware.org/bugzilla/attachment.cgi?id=13578&action=edit poc Hi th

[Bug binutils/28166] New: objdump: null ptr dereference on _bfd_elf_mips_get_relocated_section_contents in elfxx-mips.c

) Status: UNCONFIRMED Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13577 --> https://sourceware.org/bugzi

[Bug binutils/28165] New: objdump: global-buffer-overflow on rx_info_to_howto_rela in elf32-rx.c

Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13576 --> https://sourceware.org/bugzilla/attachment.cgi?id=13576&action=e

[Bug binutils/28163] New: Segment fault on `objdump -S`due to function rl78_special_reloc in elf32-rl78.c

Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13574 --> https://sourceware.org/bugzilla/attachment.cgi?id=13574&

[Bug gas/13397] Install fails with documentation error: c-rl78.texi:98: Prev reference to nonexistent node `RL78-Float'

https://sourceware.org/bugzilla/show_bug.cgi?id=13397 Shaohua Li changed: What|Removed |Added CC||shaohua.li at inf dot ethz.ch -- You

[Bug binutils/28162] New: Segment fault on `objdump -S`

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13573 --> https://sourceware.org/bugzilla/attachment.cgi?id=13573&action=edit poc Hi there, I crashed `objdump -S` with a fuzzer. - b

[Bug binutils/27854] heap-buffer-overflow on objdump -D

https://sourceware.org/bugzilla/show_bug.cgi?id=27854 --- Comment #2 from Shaohua Li --- Would this issue be addressed in the near future? I noticed that it still exists in th e latest binutils (2.37.50.20210801) -- You are receiving this mail because: You are on the CC list for the bug.

[Bug binutils/28069] New: readelf crashed due to Assertion failed in dwarf.c:display_discr_list

Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13550 --> https://sourceware.org/bugzilla/attachment.cgi?id=13550&action=edit

[Bug binutils/28055] New: Segment fault on nm-new -l

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13536 --> https://sourceware.org/bugzilla/attachment.cgi?id=13536&action=edit poc Hi there, I crashed `nm-new -l` with a fuzzer. - C

[Bug binutils/28048] New: heap-buffer-overflow on `readelf -Ww`

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13526 --> https://sourceware.org/bugzilla/attachment.cgi?id=13526&action=edit poc Hi there, I crashed `readelf -Ww` with a fuzzer

[Bug binutils/28047] New: readelf crashed due to Assertion failed in dwarf.c:skip_attr_bytes

Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13525 --> https://sourceware.org/bugzilla/attachment.cgi?id=13525&action=edit

[Bug binutils/28046] New: Segment fault on objdump -S

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13524 --> https://sourceware.org/bugzilla/attachment.cgi?id=13524&action=edit poc Hi there, I crashed `objdump -S` with a fuzzer. - C

[Bug binutils/27879] stack-buffer-overflow on sysdump

https://sourceware.org/bugzilla/show_bug.cgi?id=27879 Shaohua Li changed: What|Removed |Added Summary|stash-buffer-overflow on|stack-buffer-overflow on

[Bug binutils/27879] New: stash-buffer-overflow on sysdump

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13456 --> https://sourceware.org/bugzilla/attachment.cgi?id=13456&action=edit poc Hi there, I found a stack-buffer-overflow on sysdump

[Bug binutils/27874] New: Incomplete result on `nm-new`

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13454 --> https://sourceware.org/bugzilla/attachment.cgi?id=13454&action=edit a.o Hi there, I found that `nm-new -D -l` would output inc

[Bug binutils/27861] New: Infinite loop in dwarf.c:7507-7526

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13446 --> https://sourceware.org/bugzilla/attachment.cgi?id=13446&action=edit loop.o Hi there, I found that `readelf -w` would e

[Bug binutils/27860] New: Segmentation fault on readelf -w

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13445 --> https://sourceware.org/bugzilla/attachment.cgi?id=13445&action=edit poc Hi there, I crashed `readelf -w` with a crafted i

[Bug binutils/27858] New: global-buffer-overflow on objdump -D

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13444 --> https://sourceware.org/bugzilla/attachment.cgi?id=13444&action=edit poc Hi there, I found a global-buffer-overfl

[Bug binutils/27836] Illegal memory accessed

https://sourceware.org/bugzilla/show_bug.cgi?id=27836 Shaohua Li changed: What|Removed |Added Resolution|WORKSFORME |FIXED -- You are receiving this mail be

[Bug binutils/27854] New: heap-buffer-overflow on objdump -D

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13441 --> https://sourceware.org/bugzilla/attachment.cgi?id=13441&action=edit poc Hi there, I found a heap-buffer-overfl

[Bug binutils/27853] New: Infinite loop in dwarf.c:4387-4398

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13440 --> https://sourceware.org/bugzilla/attachment.cgi?id=13440&action=edit hang.o Hi there, I found that the for loop in dwarf

[Bug binutils/27852] New: Segmentation fault on readelf -w

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13439 --> https://sourceware.org/bugzilla/attachment.cgi?id=13439&action=edit poc Hi there, I crashes readelf (with the flag -w)

[Bug binutils/27849] New: heap-buffer-overflow on `readelf -w`

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13437 --> https://sourceware.org/bugzilla/attachment.cgi?id=13437&action=edit poc Hi there, When I built the latest head with -fs

[Bug binutils/27846] New: Infinite loop in dwarf.c:display_debug_abbrev

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13435 --> https://sourceware.org/bugzilla/attachment.cgi?id=13435&action=edit hang.o Hi there, I found that `readelf -w

[Bug binutils/27845] New: readelf crashes: heap-buffer-overflow

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13434 --> https://sourceware.org/bugzilla/attachment.cgi?id=13434&action=edit poc for `readelf -w` Hi there, I crashed readelf (w

[Bug binutils/27844] New: Unstable symbol name in objdump outputs

Component: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13433 --> https://sourceware.org/bugzilla/attachment.cgi?id=13433&action=edit crafted executable that leads to unstable symbol n

[Bug binutils/27840] New: heap-buffer-overflow on objdump -D

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13431 --> https://sourceware.org/bugzilla/attachment.cgi?id=13431&action=edit poc for `objdump -D` Hi there, I found heap-buffer-o

[Bug binutils/27839] New: Segmentation fault on objdump -D

: binutils Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- Created attachment 13430 --> https://sourceware.org/bugzilla/attachment.cgi?id=13430&action=edit poc for `objdump -D` Hi there, I crashes objdump (with

[Bug binutils/27836] Illegal memory accessed

https://sourceware.org/bugzilla/show_bug.cgi?id=27836 --- Comment #7 from Shaohua Li --- A follow-up consequence is that since the guard in dwarf.c:8802 behaves differently in two binaries, `cie` would be different. In you check the final output, `cie=` values are also different. Even worse, `cie

[Bug binutils/27836] Illegal memory accessed

https://sourceware.org/bugzilla/show_bug.cgi?id=27836 --- Comment #6 from Shaohua Li --- In dwarf.c:8818 (cie_scan = look_for;), `look_for` now is actually a negative value (it's a pointer, so this's an integer overflow), so that `cie_scan` would be assigned an invalid address/value. There're a f

[Bug binutils/27836] Illegal memory accessed

https://sourceware.org/bugzilla/show_bug.cgi?id=27836 --- Comment #4 from Shaohua Li --- Hi Alan, I think you might have misunderstood me. There wouldn't be any segv with the poc file. I just would like to point out that gcc11 and clang12 compiled binaries would give out different results. -- Y

[Bug binutils/27836] Illegal memory accessed

https://sourceware.org/bugzilla/show_bug.cgi?id=27836 --- Comment #2 from Shaohua Li --- Compiler: gcc11 & clang12 Platform: Ubuntu 20.04 LTS, x86_64 Summary: I compiled Binutils with gcc11 and clang12 separately, then run with `readelf -w poc`. I found that the last line in two outputs were di

[Bug binutils/27836] Illegal memory accessed

https://sourceware.org/bugzilla/show_bug.cgi?id=27836 --- Comment #1 from Shaohua Li --- Created attachment 13428 --> https://sourceware.org/bugzilla/attachment.cgi?id=13428&action=edit poc file for `readelf -w` -- You are receiving this mail because: You are on the CC list for the bug.

[Bug binutils/27836] New: Illegal memory accessed

Assignee: unassigned at sourceware dot org Reporter: shaohua.li at inf dot ethz.ch Target Milestone: --- -- You are receiving this mail because: You are on the CC list for the bug.