This is the mail archive of the gdb-patches@sourceware.org mailing list for the GDB project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [rfc] Do not crash reading UPX binaries

From: Daniel Jacobowitz <drow at false dot org>
To: Ismail Dönmez <ismail at pardus dot org dot tr>
Cc: gdb-patches at sourceware dot org
Date: Sun, 1 Jul 2007 18:27:47 -0400
Subject: Re: [rfc] Do not crash reading UPX binaries
References: <20070701215549.GA26528@caradoc.them.org> <200707020112.31603.ismail@pardus.org.tr>

On Mon, Jul 02, 2007 at 01:12:27AM +0300, Ismail Dönmez wrote:
> Please not that attached gdbupx is from a security advisory [0] [1] but it 
> looks like a simple DoS.
> 
> [0] http://blog.xwings.net/?p=71
> [1] http://blogs.securiteam.com/index.php/archives/922

That would be useful in the report next time :-)  I spent twenty
minutes figuring out what was going on, and yes, it was the invalid
symbol table pointer.  I'm happy to hear that this won't affect all
UPX files after all, just truncated ones.

-- 
Daniel Jacobowitz
CodeSourcery

Follow-Ups:
- Re: [rfc] Do not crash reading UPX binaries
  - From: Ismail Dönmez

References:
- [rfc] Do not crash reading UPX binaries
  - From: Daniel Jacobowitz
- Re: [rfc] Do not crash reading UPX binaries
  - From: Ismail Dönmez

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]