pmaports/cross/binutils-aarch64/CVE-2022-38533.patch

X-Git-Url: https://sourceware.org/git/?p=binutils-gdb.git;a=blobdiff_plain;f=bfd%2Fcoffcode.h;h=52027981c3f052d98e043cd0c877f0bb5da97c7f;hp=67aaf158ca1829fe63f0065f31a0b1009b227b36;hb=ef186fe54aa6d281a3ff8a9528417e5cc614c797;hpb=80075150727d653c39e9d037e15c6b87dcef08cd

diff --git a/bfd/coffcode.h b/bfd/coffcode.h
index 67aaf158ca1..52027981c3f 100644
--- a/bfd/coffcode.h
+++ b/bfd/coffcode.h
@@ -4302,10 +4302,13 @@ coff_set_section_contents (bfd * abfd,
 
 	rec = (bfd_byte *) location;
 	recend = rec + count;
-	while (rec < recend)
+	while (recend - rec >= 4)
 	  {
+	    size_t len = bfd_get_32 (abfd, rec);
+	    if (len == 0 || len > (size_t) (recend - rec) / 4)
+	      break;
+	    rec += len * 4;
 	    ++section->lma;
-	    rec += bfd_get_32 (abfd, rec) * 4;
 	  }
 
 	BFD_ASSERT (rec == recend);
cross/binutils-*: upgrade to 2.39-r2 2022-09-18 19:01:58 +00:00			`X-Git-Url: https://sourceware.org/git/?p=binutils-gdb.git;a=blobdiff_plain;f=bfd%2Fcoffcode.h;h=52027981c3f052d98e043cd0c877f0bb5da97c7f;hp=67aaf158ca1829fe63f0065f31a0b1009b227b36;hb=ef186fe54aa6d281a3ff8a9528417e5cc614c797;hpb=80075150727d653c39e9d037e15c6b87dcef08cd`

			`diff --git a/bfd/coffcode.h b/bfd/coffcode.h`
			`index 67aaf158ca1..52027981c3f 100644`
			`--- a/bfd/coffcode.h`
			`+++ b/bfd/coffcode.h`
			`@@ -4302,10 +4302,13 @@ coff_set_section_contents (bfd * abfd,`

			`rec = (bfd_byte *) location;`
			`recend = rec + count;`
			`- while (rec < recend)`
			`+ while (recend - rec >= 4)`
			`{`
			`+ size_t len = bfd_get_32 (abfd, rec);`
			`+ if (len == 0 \|\| len > (size_t) (recend - rec) / 4)`
			`+ break;`
			`+ rec += len * 4;`
			`++section->lma;`
			`- rec += bfd_get_32 (abfd, rec) * 4;`
			`}`

			`BFD_ASSERT (rec == recend);`