| From ac4af583bd59f6631671ad4abf985799ce4a53d9 Mon Sep 17 00:00:00 2001 |
| From: rguenth <rguenth@138bc75d-0d04-0410-961f-82ee72b054a4> |
| Date: Thu, 25 Jul 2019 10:46:54 +0000 |
| Subject: [PATCH 37/39] CVE-2019-14250: Check zero value in |
| simple_object_elf_match |
| |
| 2019-07-25 Richard Biener <rguenther@suse.de> |
| |
| PR lto/90924 |
| Backport from mainline |
| 2019-07-12 Ren Kimura <rkx1209dev@gmail.com> |
| |
| * simple-object-elf.c (simple_object_elf_match): Check zero value |
| shstrndx. |
| |
| git-svn-id: svn+ssh://gcc.gnu.org/svn/gcc/branches/gcc-9-branch@273793 138bc75d-0d04-0410-961f-82ee72b054a4 |
| |
| Upstream-Status: Backport |
| Affectes: < 9.2 |
| CVE: CVE-2019-14250 |
| Dropped changelog |
| Signed-off-by: Armin Kuster <Akustre@mvista.com> |
| --- |
| libiberty/simple-object-elf.c | 8 ++++++++ |
| 1 file changed, 8 insertions(+) |
| |
| diff --git a/libiberty/simple-object-elf.c b/libiberty/simple-object-elf.c |
| index 3d49f339631..c00cebdb6c7 100644 |
| --- a/libiberty/simple-object-elf.c |
| +++ b/libiberty/simple-object-elf.c |
| @@ -557,6 +557,14 @@ simple_object_elf_match (unsigned char header[SIMPLE_OBJECT_MATCH_HEADER_LEN], |
| return NULL; |
| } |
| |
| + if (eor->shstrndx == 0) |
| + { |
| + *errmsg = "invalid ELF shstrndx == 0"; |
| + *err = 0; |
| + XDELETE (eor); |
| + return NULL; |
| + } |
| + |
| return (void *) eor; |
| } |
| |
| -- |
| 2.25.1 |
| |