Branch: refs/heads/master
Home: https://github.com/tianocore/edk2
Commit: 059332bda3c08a730394e4a5b8a9b4fade0bf371
https://github.com/tianocore/edk2/commit/059332bda3c08a730394e4a5b8a9b4fade0bf371
Author: Gowtham M <[email protected]>
Date: 2025-11-05 (Wed, 05 Nov 2025)
Changed paths:
M ArmPkg/Library/DebugAgentSymbolsBaseLib/DebugAgentSymbolsBaseLib.c
Log Message:
-----------
ArmPkg/Library: Fix for coverity issue OVERRUN
RootCause: SectionSize, SectionLength and FileLength are declared as
UINTN, UINTN and UINT32 but are typecast to UINT32 and masked
with 0x00FFFFFF to store only the lower 24 bits.
Although this approach yields the correct result,
it introduces a potential security vulnerability due to
unsafe typecasting and dereferencing.
Solution: Using the predefined macro FFS_FILE_SIZE()
from MdePkg\Include\Pi\PiFirmwareFile.h,
which safely performs the same operation by reconstruct
the size using individual byte access.
Cc: Sachin Ganesh <[email protected]>
Signed-off-by: Gowtham M <[email protected]>
To unsubscribe from these emails, change your notification settings at
https://github.com/tianocore/edk2/settings/notifications
_______________________________________________
edk2-commits mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/edk2-commits
