Bug ID: 26167
           Summary: execess free on non malloc memory, nm
           Product: binutils
           Version: 2.35 (HEAD)
            Status: UNCONFIRMED
          Severity: critical
          Priority: P2
         Component: binutils
          Assignee: unassigned at sourceware dot org
          Reporter: featherrain26 at gmail dot com
  Target Milestone: ---

Created attachment 12658
POC input


There is a memeory corruption problem which attempt to free the non malloc

This is my environment:

Here is the trace reported by ASAN:
==42616==ERROR: AddressSanitizer: attempting free on address which was not
malloc()-ed: 0x61e00000f4e0 in thread T0
    #0 0x7f82d981a32a in __interceptor_free
    #1 0x789095 in _bfd_coff_free_symbols ../../bfd/coffgen.c:1782
    #2 0x789095 in _bfd_coff_close_and_cleanup ../../bfd/coffgen.c:3180
    #3 0x466df8 in bfd_close_all_done ../../bfd/opncls.c:789
    #4 0x466df8 in bfd_close ../../bfd/opncls.c:759
    #5 0x4129fa in display_file ../../binutils/nm.c:1392
    #6 0x4081a7 in main ../../binutils/nm.c:1860
    #7 0x7f82d91d482f in __libc_start_main
    #8 0x40a248 in _start

0x61e00000f4e0 is located 1120 bytes inside of 2505-byte region
allocated by thread T0 here:
    #0 0x7f82d981a7fa in __interceptor_calloc
    #1 0x45a82a in bfd_malloc ../../bfd/libbfd.c:275
    #2 0x45a82a in bfd_zmalloc ../../bfd/libbfd.c:360

SUMMARY: AddressSanitizer: bad-free ??:0 __interceptor_free

To reproduce, compile the program with address sanitizer, then run 

nm -C -a -l --synthetic input

You are receiving this mail because:
You are on the CC list for the bug.

Reply via email to