Hello! been playing with SHT fuzzing and found a couple of crashes on broken sections.
The first crash happens when section_strings[section->sh_name] is not a valid address, the second one happens when trying to iterate over entries in some sections with sh_entsize set to 0.
Meanwhile, those malformed files run happily in the OS itself.
Hello! been playing with SHT fuzzing and found a couple of crashes on broken sections.
The first crash happens when
section_strings[section->sh_name]is not a valid address, the second one happens when trying to iterate over entries in some sections withsh_entsizeset to 0. Meanwhile, those malformed files run happily in the OS itself.