absl: fix potential int overflow in ELF reading - abseil.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Abseil Team <absl-team@google.com>	2023-02-21 11:19:15 -0800
committer	Copybara-Service <copybara-worker@google.com>	2023-02-21 11:20:22 -0800
commit	d9ae096e74b04d3567aa89db234204fd4b11dd3f (patch)
tree	855048c79d9d582cbc12e03de6a7a521cbfe9cbc /absl/container/internal/raw_hash_set_test.cc
parent	bd624d9f9825f76f14453beb3df81d82b9e17062 (diff)
download	abseil-d9ae096e74b04d3567aa89db234204fd4b11dd3f.tar.gz abseil-d9ae096e74b04d3567aa89db234204fd4b11dd3f.tar.bz2 abseil-d9ae096e74b04d3567aa89db234204fd4b11dd3f.zip

absl: fix potential int overflow in ELF reading

Both e_shentsize and e_shstrndx are uint16, so the product elf_header.e_shentsize * elf_header.e_shstrndx can overflow the promoted type int (MAX_UINT16 * MAX_UINT16 > MAX_INT), which is undefined behavior. Not sure if it can affect any real cases or not, though. Cast e_shentsize to loff_t instead of e_shoff. This makes both multiplication and addition to use loff_t type. PiperOrigin-RevId: 511254775 Change-Id: I39c493bfb539cca6742aae807c50718d31e7c001

Diffstat (limited to 'absl/container/internal/raw_hash_set_test.cc')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: