XS-libdwarf
81 results

 view release on metacpan or  search on metacpan

libdwarf-code-0.11.1/bugxml/dwarfbug.html  view on Meta::CPAN 

    "tu", percu_out=percu_out@entry=0x65a830,
    error=error@entry=0x7fffffffdb08) at dwarf_xu_index.c:577
 </pre>
<p></p>
<p>datefixed: 2015-05-18
</p>
<p>references: regressiontests/liu/OOB0517_02.elf
</p>
<p>gitfixid: ac6673e32f3443a5d36c2217cb814000930b2c54
</p>
<p>tarrelease: libdwarf-20160923.tar.gz
</p>
<p> <a href="#top">[top]</a> </p>
<h3 id="DW201605-013">172) DW201605-013</h3>
<p>id: DW201605-013
</p>
<p>cve: CVE-2016-5033
</p>
<p>fuzzer:</p>
<p>datereported: 2016-05-17
</p>
<p>reportedby: Yue Liu
</p>
<p>vulnerability: OOB read bug in print_exprloc_content
</p>
<p>product: libdwarf
</p>
<p>description: Test object shows
 an invalid write in print_exprloc_content.
</p> <pre>
 #0  print_exprloc_content (dbg=dbg@entry=0x654ea0,
    die=die@entry=0x65b110, attrib=attrib@entry=0x65b590,
    esbp=esbp@entry=0x7fffffffcef0, showhextoo=1) at print_die.c:4182
 #1  0x0000000000412fb1 in get_attr_value (dbg=dbg@entry=0x654ea0,
    tag=&lt;optimized out&gt;, die=die@entry=0x65b110,
    dieprint_cu_goffset=dieprint_cu_goffset@entry=11,
    attrib=attrib@entry=0x65b590, srcfiles=srcfiles@entry=0x0,
    cnt=cnt@entry=0, esbp=esbp@entry=0x7fffffffcef0, show_form=0,
    local_verbose=0) at print_die.c:4972
 </pre>
<p></p>
<p>datefixed: 2015-05-18
</p>
<p>references: regressiontests/liu/OOB0517_01.elf
</p>
<p>gitfixid: ac6673e32f3443a5d36c2217cb814000930b2c54
</p>
<p>tarrelease: libdwarf-20160923.tar.gz
</p>
<p> <a href="#top">[top]</a> </p>
<h3 id="DW201605-012">173) DW201605-012</h3>
<p>id: DW201605-012
</p>
<p>cve: CVE-2016-5034
</p>
<p>fuzzer:</p>
<p>datereported: 2016-05-13
</p>
<p>reportedby: Yue Liu
</p>
<p>vulnerability: OOB write. From relocation records
</p>
<p>product: libdwarf
</p>
<p>description: Test object shows
 an invalid write in dwarf_elf_access.c
 (when doing the relocations).
 Adding the relocation value to anything overflowed
 and disguised the bad relocation record.
 With a 32bit kernel build the test could show
 a double-free and coredump due to the unchecked invalid
 writes from relocations.
</p>
<p>datefixed: 2016-05-17
</p>
<p>references: regressiontests/liu/HeapOverflow0513.elf
</p>
<p>gitfixid: 10ca310f64368dc083efacac87732c02ef560a92
</p>
<p>tarrelease: libdwarf-20160923.tar.gz
</p>
<p> <a href="#top">[top]</a> </p>
<h3 id="DW201605-011">174) DW201605-011</h3>
<p>id: DW201605-011
</p>
<p>cve: CVE-2016-5035
</p>
<p>fuzzer:</p>
<p>datereported: 2016-05-06
</p>
<p>reportedby: Yue Liu
</p>
<p>vulnerability: OOB read bug in _dwarf_read_line_table_header
</p>
<p>product: libdwarf
</p>
<p>description: Test object shows
 null dereference at line 62
 of dwarf_line_table_reader.c.
 Frame code and linetable code was not noticing data corruption.
</p>
<p>datefixed: 2016-05-12
</p>
<p>references: regressiontests/liu/OOB_read4.elf
</p>
<p>gitfixid: 82d8e007851805af0dcaaff41f49a2d48473334b
</p>
<p>tarrelease: libdwarf-20160923.tar.gz
</p>
<p> <a href="#top">[top]</a> </p>
<h3 id="DW201605-010">175) DW201605-010</h3>
<p>id: DW201605-010
</p>
<p>cve: CVE-2016-5036
</p>
<p>fuzzer:</p>
<p>datereported: 2016-05-06
</p>
<p>reportedby: Yue Liu
</p>
<p>vulnerability: OOB read bug in dump_block
</p>
<p>product: libdwarf
</p>
<p>description: Test object shows
 null dereverence at line 186
 of dump_block() in print_sections.c
 Frame code was not noticing frame data corruption.
</p>
<p>datefixed: 2016-05-12
</p>
<p>references: regressiontests/liu/OOB_read3.elf



( run in 0.514 second using v1.01-cache-2.11-cpan-5511b514fd6 )