Branch: refs/heads/master
Home: https://github.com/tianocore/edk2
Commit: 8504d2be17c98265049ec334711aad4c0baed1d7
https://github.com/tianocore/edk2/commit/8504d2be17c98265049ec334711aad4c0baed1d7
Author: Sureshkumar Ponnusamy <[email protected]>
Date: 2024-09-03 (Tue, 03 Sep 2024)
Changed paths:
M MdeModulePkg/Universal/FaultTolerantWriteDxe/FtwMisc.c
Log Message:
-----------
MdeModulePkg/FaultTolerantWriteDxe: Fix buffer overrun issue
- This PR aims to prevent a buffer overrun issue found in FtwGetLastWriteHeader
function.As per the current code, when there is a malformed blocks (with all
bytes as 0s)
then `Offset += FTW_WRITE_TOTAL_SIZE (FtwHeader->NumberOfWrites,
FtwHeader->PrivateDataSize)` would access beyond FtwWorkSpaceSize.
- Also added the signature check to validate work space
Signed-off-by: Sureshkumar Ponnusamy <[email protected]>
To unsubscribe from these emails, change your notification settings at
https://github.com/tianocore/edk2/settings/notifications
_______________________________________________
edk2-commits mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/edk2-commits
