MdeModulePkg/PiSmmCore: SmmEntryPoint underflow (CVE-2021-38578) (cab1f025) · Commits · linux-arm / edk2-cca

Commit cab1f025 authored Oct 27, 2022 by Miki Demeter Committed by mergify[bot] Nov 04, 2022

MdeModulePkg/PiSmmCore: SmmEntryPoint underflow (CVE-2021-38578)

REF:https://bugzilla.tianocore.org/show_bug.cgi?id=3387



Added use of SafeIntLib to validate values are not causing overflows or
underflows in user controlled values when calculating buffer sizes.

Signed-off-by: Miki Demeter <miki.demeter@intel.com>
Reviewed-by: Michael D Kinney <michael.d.kinney@intel.com>
Cc: Jian J Wang <jian.j.wang@intel.com>
Cc: Liming Gao <gaoliming@byosoft.com.cn>
Reviewed-by: Liming Gao <gaoliming@byosoft.com.cn>

parent c46204e2

Hide whitespace changes

Inline Side-by-side

Please register or to comment