OOM-Bug in cxxfilt (binuitils-2.30-15ubuntu1)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
binutils (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
Dear all,
The following binutils cxxfilt OOM bug was found by a modified version of the kAFL fuzzer (https:/
Steps to reproduce:
Build current verison of binutils:
```
pull-lp-source binutils
cd binutils-2.30
CC=clang CXX=clang++ CFLAGS=
CC=clang CXX=clang++ CFLAGS=
-fsanitize-
```
Run inputs under ASAN:
```
ASAN_OPTIONS=
```
We can verify this issue for cxxfilt binuitils-
Credits: Sergej Schumilo, Cornelius Aschermann (both of Ruhr-Universität Bochum)
Best regards,
Sergej Schumilo
CVE References
Changed in binutils (Ubuntu): | |
status: | New → Confirmed |
Thanks for taking the time to report this bug and helping to make Ubuntu better.
Please report this issue to the upstream binutils developers by filing a bug at https:/ /sourceware. org/bugzilla/
Once the binutils team has evaluated the issue, and a proper fix is available, we will release a security update for Ubuntu.