]> git.ipfire.org Git - thirdparty/binutils-gdb.git/commitdiff
projects / thirdparty / binutils-gdb.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 1897dad)
buffer overflow in cmdline_add_object_only_section
authorAlan Modra <amodra@gmail.com>
Fri, 17 Jan 2025 08:30:41 +0000 (19:00 +1030)
committerAlan Modra <amodra@gmail.com>
Fri, 17 Jan 2025 08:36:39 +0000 (19:06 +1030)
Seen running ld-plugin/lto-4r-c on x86_64-w64-mingw32

* ldlang.c (cmdline_add_object_only_section): Allocate one more
for output symbol buffer.

ld/ldlang.c patch | blob | blame | history

diff --git a/ld/ldlang.c b/ld/ldlang.c
index cf4294d7288a2d8d68f4aef538fc2b77b5c6591e..2e82eef61feaeba347abfba349687853571e0dc8 100644 (file)
--- a/ld/ldlang.c
+++ b/ld/ldlang.c
@@ -10728,7 +10728,7 @@ cmdline_add_object_only_section (bfd_byte *contents, size_t size)
       long src_count = 0, dst_count = 0;
       asymbol **from, **to;
 
-      osympp = (asymbol **) xmalloc (symcount * sizeof (asymbol *));
+      osympp = xmalloc ((symcount + 1) * sizeof (asymbol *));
       from = isympp;
       to = osympp;
       for (; src_count < symcount; src_count++)
A mirror of the official binutils-gdb repository