generic_get_symbol can access past end of symbol section if entry_size in is smaller than sizeof(Elf64_Sym) or sizeof(Elf32_Sym)

serge1 / ELFIO

ELFIO - ELF (Executable and Linkable Format) reader and producer implemented as a header only C++ library

http://serge1.github.io/ELFIO

MIT License

706 stars 152 forks source link

Closed Alan-Jowett closed 2 years ago

Alan-Jowett commented 2 years ago

In this case, entry_size for the symbol section is 1, which causes generic_get_symbol get_symbols_num to return symbol count == size of section.

When accessing the last element, generic_get_symbol reads past the end of the symbol section.

@alan-jowett to provide PR.