code.ossystems Code Review - openembedded-core.git/commit

binutils: CVE-2017-12451

Source: git://sourceware.org/git/binutils-gdb.git
MR: 73840
Type: Security Fix
Disposition: Backport from binutils-2_29-branch
ChangeID: 582c686f18c059d665189a6a09df3a8cc4a3b093
Description:

Fix address violation when attempting to read a corrupt field in a COFF archive header structure.

PR 21786
* coff-rs6000.c (_bfd_strntol): New function.
  (_bfd_strntoll): New function.
  (GET_VALUE_IN_FIELD): New macro.
  (EQ_VALUE_IN_FIELD): new macro.
  (_bfd_xcoff_slurp_armap): Use new macros.
  (_bfd_xcoff_archive_p): Likewise.
  (_bfd_xcoff_read_ar_hdr): Likewise.
  (_bfd_xcoff_openr_next_archived_file): Likewise.
  (_bfd_xcoff_stat_arch_elt): Likewise.

Extend previous fix to coff-rs6000.c to coff64-rs6000.c

PR 21786
* coff64-rs6000.c (_bfd_strntol): New function.
  (_bfd_strntoll): New function.
  (GET_VALUE_IN_FIELD): New macro.
  (xcoff64_slurp_armap): Use new macros.

Affects: <= 2.29
Signed-off-by: Thiruvadi Rajaraman <trajaraman@mvista.com>
Reviewed-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>

author	Thiruvadi Rajaraman <trajaraman@mvista.com>
	Thu, 31 Aug 2017 13:30:45 +0000 (19:00 +0530)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Sun, 7 Jan 2018 17:09:44 +0000 (17:09 +0000)
commit	62eeac8e4684c129af6f36aa7c2b91270a5dacde
tree	d4eeeb9c4be8a87a14ff26e29876fb0a28a32746	tree \| snapshot
parent	62c4dc16dd8fe99cba970c5e7d8dfc063855d4b9	commit \| diff

meta/recipes-devtools/binutils/binutils-2.27.inc		diff \| blob \| history
meta/recipes-devtools/binutils/binutils/CVE-2017-12451.patch	[new file with mode: 0644]	blob