subject:"\[edk2\-devel\] \[PATCH v1 0\/4\] Bz4166\: Integer Overflow in CreateHob\(\)"

Re: [edk2-devel] [PATCH v1 0/4] Bz4166: Integer Overflow in CreateHob()

2024-01-11 Thread Ard Biesheuvel

hanks, > Gua > -Original Message- > From: devel@edk2.groups.io On Behalf Of Guo, Gua > Sent: Thursday, January 11, 2024 1:15 PM > To: devel@edk2.groups.io > Cc: Guo, Gua > Subject: [edk2-devel] [PATCH v1 0/4] Bz4166: Integer Overflow in CreateHob() > > From: Gua Guo &

Re: [edk2-devel] [PATCH v1 0/4] Bz4166: Integer Overflow in CreateHob()

2024-01-11 Thread Guo, Gua

also let me know, before merging it. It's PR https://github.com/tianocore/edk2/pull/5252/ Thanks, Gua -Original Message- From: devel@edk2.groups.io On Behalf Of Guo, Gua Sent: Thursday, January 11, 2024 1:15 PM To: devel@edk2.groups.io Cc: Guo, Gua Subject: [edk2-devel] [PATCH v1 0

[edk2-devel] [PATCH v1 0/4] Bz4166: Integer Overflow in CreateHob()

2024-01-10 Thread Guo, Gua

From: Gua Guo Fix Integer Overflow for CVE-2022-36765 1. UefiPayloadPkg/Hob: Integer Overflow in CreateHob() 2. StandaloneMmPkg/Hob: Integer Overflow in CreateHob() 3. EmbeddedPkg/Hob: Integer Overflow in CreateHob() 4. MdeModulePkg/Hob: Integer Overflow in CreateHob() Gerd Hoffmann (4): Uefi