From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from gnu.wildebeest.org (gnu.wildebeest.org [45.83.234.184]) by sourceware.org (Postfix) with ESMTPS id 173743858D20 for ; Mon, 20 Feb 2023 15:55:31 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.2 sourceware.org 173743858D20 Authentication-Results: sourceware.org; dmarc=none (p=none dis=none) header.from=klomp.org Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=klomp.org Received: from r6.localdomain (82-217-174-174.cable.dynamic.v4.ziggo.nl [82.217.174.174]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by gnu.wildebeest.org (Postfix) with ESMTPSA id DB946300027E; Mon, 20 Feb 2023 16:55:29 +0100 (CET) Received: by r6.localdomain (Postfix, from userid 1000) id 2BCAB340221; Mon, 20 Feb 2023 16:55:29 +0100 (CET) From: Mark Wielaard To: elfutils-devel@sourceware.org Cc: Evgeny Vereshchagin , Aleksei Vetrov Subject: Fix some .debug checking and gnu hash xlate logic Date: Mon, 20 Feb 2023 16:55:16 +0100 Message-Id: <20230220155518.86598-1-mark@klomp.org> X-Mailer: git-send-email 2.39.2 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=-3029.7 required=5.0 tests=BAYES_00,JMQ_SPF_NEUTRAL,KAM_DMARC_STATUS,RCVD_IN_BARRACUDACENTRAL,SPF_HELO_NONE,SPF_PASS,TXREP autolearn=no autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on server2.sourceware.org List-Id: Hi, The last fuzzer found some use (checking) of undefine/uninitialized data. Either of these two patches will fix that: [PATCH 1/2] libelf: memmove any extra bytes left by elf_cvt_gnuhash [PATCH 2/2] libdw: Use elf_rawdata when checking .debug section Note that the bad data wouldn't actually be used, just checked for validity. But these patches make sure the result is deterministic. Cheers, Mark