Toolchain/binutils-gdb
1
0
Fork 0
forked from Imagelibrary/binutils-gdb
Code Pull Requests Activity

Re: Yet another ecoff fuzzed object fix

Browse Source 
In commit 6fc018e9e5 I replaced the fdr_ptr csym check against the
header isymMax count with a check against bfd symcount.  In fact, both
checks are needed.  The isymMax check sanity checks accesses against
the external sym array, the symcount one against the internal array.

	* ecoff.c (_bfd_ecoff_slurp_symbol_table): Reinstate fdr_ptr
	csym check against isymMax.
This commit is contained in:
Alan Modra
2024-06-07 08:27:31 +09:30
parent b284a87b49
commit d89cd643c5
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
bfd/ecoff.c
View File

@@ -966,6 +966,7 @@ _bfd_ecoff_slurp_symbol_table (bfd *abfd)
if (fdr_ptr->isymBase < 0
|| fdr_ptr->isymBase > symhdr->isymMax
|| fdr_ptr->csym < 0
|| fdr_ptr->csym > symhdr->isymMax - fdr_ptr->isymBase
|| fdr_ptr->csym > ((long) bfd_get_symcount (abfd)
- (internal_ptr - internal))
|| fdr_ptr->issBase < 0