From 5b062b1b6c922b034796662bc63a7092d13f90f2 Mon Sep 17 00:00:00 2001
From: luguangyang <luguangyang@xfusion.com>
Date: Mon, 25 Dec 2023 15:55:05 +0800
Subject: [PATCH] [Backport]binutils:fix CVE-2022-38533

CVE:CVE-2022-38533
Reference:https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=ef186fe54aa6d281a3ff8a9528417e5cc614c797
Type:CVE
reason:fix CVE-2022-38533
---
 backport-CVE-2022-38533.patch | 33 +++++++++++++++++++++++++++++++++
 binutils.spec                 |  6 +++++-
 2 files changed, 38 insertions(+), 1 deletion(-)
 create mode 100644 backport-CVE-2022-38533.patch

diff --git a/backport-CVE-2022-38533.patch b/backport-CVE-2022-38533.patch
new file mode 100644
index 0000000..31f6672
--- /dev/null
+++ b/backport-CVE-2022-38533.patch
@@ -0,0 +1,33 @@
+From ef186fe54aa6d281a3ff8a9528417e5cc614c797 Mon Sep 17 00:00:00 2001
+From: Alan Modra <amodra@gmail.com>
+Date: Sat, 13 Aug 2022 15:32:47 +0930
+Subject: [PATCH] PR29482 - strip: heap-buffer-overflow
+
+	PR 29482
+	* coffcode.h (coff_set_section_contents): Sanity check _LIB.
+---
+ bfd/coffcode.h | 7 +++++--
+ 1 file changed, 5 insertions(+), 2 deletions(-)
+
+diff --git a/bfd/coffcode.h b/bfd/coffcode.h
+index 67aaf158ca1..52027981c3f 100644
+--- a/bfd/coffcode.h
++++ b/bfd/coffcode.h
+@@ -4302,10 +4302,13 @@ coff_set_section_contents (bfd * abfd,
+ 
+ 	rec = (bfd_byte *) location;
+ 	recend = rec + count;
+-	while (rec < recend)
++	while (recend - rec >= 4)
+ 	  {
++	    size_t len = bfd_get_32 (abfd, rec);
++	    if (len == 0 || len > (size_t) (recend - rec) / 4)
++	      break;
++	    rec += len * 4;
+ 	    ++section->lma;
+-	    rec += bfd_get_32 (abfd, rec) * 4;
+ 	  }
+ 
+ 	BFD_ASSERT (rec == recend);
+-- 
+2.39.3
\ No newline at end of file
diff --git a/binutils.spec b/binutils.spec
index c44e037..bead713 100644
--- a/binutils.spec
+++ b/binutils.spec
@@ -1,7 +1,7 @@
 Summary: Binary utilities
 Name:    binutils
 Version: 2.37
-Release: 23
+Release: 24
 License: GPLv3+
 URL:     https://sourceware.org/binutils
 
@@ -80,6 +80,7 @@ Patch54: backport-CVE-2021-46174.patch
 Patch55: backport-CVE-2023-1972.patch
 Patch56: backport-CVE-2022-48064.patch
 Patch57: backport-CVE-2022-4285.patch
+Patch58: backport-CVE-2022-38533.patch
 
 Provides: bundled(libiberty)
 
@@ -376,6 +377,9 @@ fi
 %{_infodir}/bfd*info*
 
 %changelog
+* Mon Dec 25 2023 luguangyang <luguangyang@xfusion.com> - 2.37-24
+- fix CVE-2022-38533
+
 * Tue Sep 05 2023 eastb233 <xiezhiheng@huawei.com> - 2.37-23
 - Delete post, preun, postun for help package
 
-- 
Gitee