system/binutils: CVE-2019-9076: excessive memory allocation in elf_read_notes
Bugzilla ID | 109 |
Alias(es) | CVE-2019-9076 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2019-07-24 02:58:46 -0500 |
Modified | 2019-07-24 19:17:49 -0500 |
Status | RESOLVED WONTFIX |
Version | 1.0-BETA3 |
Hardware | Adélie Linux / All |
Importance | --- / normal |
URL | https://nvd.nist.gov/vuln/detail/CVE-2019-9076 |
See also |
https://bts.adelielinux.org/show_bug.cgi?id=116 https://bts.adelielinux.org/show_bug.cgi?id=108 |
Description
From upstream [1]:
This is a different testcase and different out of memory condition to
pr24233. Unlike pr24233 we report an out of memory error. I think
that is perfectly good behaviour for user input with silly sizes, in
this case a NOTE section claiming to be 0xfffff7dd00 bytes in size.
While we could test for silly section sizes by comparing against file
size, that doesn't work in all situations, eg. when section contents
are encoded and the decoded size is much larger than the raw size.
[1] https://sourceware.org/bugzilla/show_bug.cgi?id=24238#c1