public inbox for gcc-bugs@sourceware.org
help / color / mirror / Atom feed
* [Bug demangler/102702] New: libiberty: heap/stack buffer overflow when decoding user input
@ 2021-10-12 12:52 contact at lsferreira dot net
  2021-10-12 12:54 ` [Bug demangler/102702] " contact at lsferreira dot net
  0 siblings, 1 reply; 2+ messages in thread
From: contact at lsferreira dot net @ 2021-10-12 12:52 UTC (permalink / raw)
  To: gcc-bugs

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=102702

            Bug ID: 102702
           Summary: libiberty: heap/stack buffer overflow when decoding
                    user input
           Product: gcc
           Version: 11.2.0
            Status: UNCONFIRMED
          Severity: normal
          Priority: P3
         Component: demangler
          Assignee: unassigned at gcc dot gnu.org
          Reporter: contact at lsferreira dot net
  Target Milestone: ---

Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in
libiberty allows attackers to potentially cause a denial of service
(segmentation fault or crash) via a crafted mangled symbol.

Example of affected symbols "_D2FGWG44444444444444444EQe",
"_D4c?441_Qe_4DmD_i==========UUUqU", "_D33dddQ_D2HHHHDVV_D33dddQDVVHHDQN188Qr"
and "_D8ee2_1111Qe".

A CVE was already assigned by Red Hat: CVE-2021-3826: libiberty: heap/stack
buffer overflow in the dlang_lname function in d-demangle.c

^ permalink raw reply	[flat|nested] 2+ messages in thread
* [Bug demangler/102702] libiberty: heap/stack buffer overflow when decoding user input
  2021-10-12 12:52 [Bug demangler/102702] New: libiberty: heap/stack buffer overflow when decoding user input contact at lsferreira dot net
@ 2021-10-12 12:54 ` contact at lsferreira dot net
  0 siblings, 0 replies; 2+ messages in thread
From: contact at lsferreira dot net @ 2021-10-12 12:54 UTC (permalink / raw)
  To: gcc-bugs

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=102702

--- Comment #1 from Luís Ferreira <contact at lsferreira dot net> ---
Submitted patch:
https://gcc.gnu.org/pipermail/gcc-patches/2021-September/579985.html

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2021-10-12 12:54 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-10-12 12:52 [Bug demangler/102702] New: libiberty: heap/stack buffer overflow when decoding user input contact at lsferreira dot net
2021-10-12 12:54 ` [Bug demangler/102702] " contact at lsferreira dot net

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).