[Bug binutils/33548] objdump --ctf: Heap buffer overflow

https://sourceware.org/bugzilla/show_bug.cgi?id=33548 --- Comment #4 from Nick Alcock --- This bug revealed other problems with syntactically valid output that the linker would simply never produce: notably, zero-element archives. Fixing them too, also under this bug. (And thank you for an excel

[Bug binutils/33548] objdump --ctf: Heap buffer overflow

https://sourceware.org/bugzilla/show_bug.cgi?id=33548 Alan Modra changed: What|Removed |Added Resolution|--- |FIXED Target Milestone|---

[Bug binutils/33548] objdump --ctf: Heap buffer overflow

https://sourceware.org/bugzilla/show_bug.cgi?id=33548 --- Comment #2 from Sourceware Commits --- The master branch has been updated by Alan Modra : https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=626360da44457075f2d9026f0d1d356e5b75c002 commit 626360da44457075f2d9026f0d1d356e5b75c002

[Bug binutils/33548] objdump --ctf: Heap buffer overflow

https://sourceware.org/bugzilla/show_bug.cgi?id=33548 Alan Modra changed: What|Removed |Added Ever confirmed|0 |1 Status|UNCONFIRMED

[Bug binutils/33548] objdump --ctf: Heap buffer overflow

https://sourceware.org/bugzilla/show_bug.cgi?id=33548 --- Comment #1 from Nick Alcock --- See libctf/33549: malformed input is not really in libctf's threat model (not historically and I haven't gone to extreme lengths to avoid it even now, though I'm adding more range checking all the time). If

Re: objdump --ctf: Heap buffer overflow

Dear Alan, Thank you for confirming. I have opened the bug reports as suggested. Best regards, Momoko 差出人: Alan Modra 送信日時: 2025年10月17日 11:50 宛先: Momoko Shiraishi CC: [email protected] 件名: Re: objdump --ctf: Heap buffer overflow On Thu, Oct 16, 2025 at 08

objdump --ctf: Heap buffer overflow

Hi maintainers, we have found a heap-buffer-overflow and would like to report this issue. Could you confirm if this qualifies as a bug? I am happy to provide any additional information needed. ## Summary We found a bug in objdump's CTF handling where missing file size validation leads to out-o

[Bug binutils/33548] objdump --ctf: Heap buffer overflow

https://sourceware.org/bugzilla/show_bug.cgi?id=33548 Sam James changed: What|Removed |Added CC||nick.alcock at oracle dot com -- You are

[Bug binutils/33548] New: objdump --ctf: Heap buffer overflow

https://sourceware.org/bugzilla/show_bug.cgi?id=33548 Bug ID: 33548 Summary: objdump --ctf: Heap buffer overflow Product: binutils Version: 2.45 Status: UNCONFIRMED Severity: normal Priority: P2 Component

Re: objdump --ctf: Heap buffer overflow

On Thu, Oct 16, 2025 at 08:48:09AM +, Momoko Shiraishi wrote: > Hi maintainers, > > we have found a heap-buffer-overflow and would like to report this issue. > Could you confirm if this qualifies as a bug? Yes to both this and the other testcase. Please open a bug report at https://sourcewar