Description:
binutils are a collection of binary tools necessary to build programs.
An updated clang version were able to discover two null pointer dereference in the following simple way:
# echo "int main () { return 0; }" > test.c # cc test.c -o test /tmp/portage/sys-devel/binutils-2.28/work/binutils-2.28/bfd/elflink.c:124:12: runtime error: member access within null pointer of type 'struct elf_link_hash_entry' /tmp/portage/sys-devel/binutils-2.28/work/binutils-2.28/bfd/elflink.c:11979:58: runtime error: member access within null pointer of type 'elf_section_list' (aka 'struct elf_section_list')
Affected version:
2.28
Fixed version:
N/A
Commit fix:
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=ad32986fdf9da1c8748e47b8b45100398223dba8
Credit:
This bug was discovered by Agostino Sarubbo of Gentoo.
CVE:
CVE-2017-7614
Timeline:
2017-04-01: bug discovered and reported to upstream
2017-04-04: upstream released a patch
2017-04-05: blog post about the issue
2017-04-09: CVE assigned
Note:
This bug was found with clang’s Undefined Behavior Sanitizer.
Permalink:
2 Responses to binutils: two NULL pointer dereference in elflink.c