objdump segfault after symbol table error
This memcpy segfaults if symcount is -1 (=> syms is NULL).
memcpy (sorted_syms, symcount ? syms : dynsyms,
sorted_symcount * sizeof (asymbol *));
* objdump.c (slurp_symtab): Don't leave symcount as -1 after
an error.
(slurp_dynamic_symtab): Likewise for dynsymcount.
diff --git a/binutils/objdump.c b/binutils/objdump.c
index 0e8e198..5dac13b 100644
--- a/binutils/objdump.c
+++ b/binutils/objdump.c
@@ -1015,6 +1015,7 @@
my_bfd_nonfatal (bfd_get_filename (abfd));
free (sy);
sy = NULL;
+ symcount = 0;
}
return sy;
}
@@ -1048,6 +1049,7 @@
my_bfd_nonfatal (bfd_get_filename (abfd));
free (sy);
sy = NULL;
+ dynsymcount = 0;
}
return sy;
}
