On Thu, 11 Jan 2024 at 07:52, Ard Biesheuvel wrote:
>
> On Thu, 11 Jan 2024 at 06:15, wrote:
> >
> > From: Gerd Hoffmann
> >
> > REF: https://bugzilla.tianocore.org/show_bug.cgi?id=4166
> >
> > Fix integer overflow in various CreateHob instances.
> > Fixes: CVE-2022-36765
> >
> > The CreateHob()
On Thu, 11 Jan 2024 at 06:15, wrote:
>
> From: Gerd Hoffmann
>
> REF: https://bugzilla.tianocore.org/show_bug.cgi?id=4166
>
> Fix integer overflow in various CreateHob instances.
> Fixes: CVE-2022-36765
>
> The CreateHob() function aligns the requested size to 8
> performing the following operati
From: Gerd Hoffmann
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=4166
Fix integer overflow in various CreateHob instances.
Fixes: CVE-2022-36765
The CreateHob() function aligns the requested size to 8
performing the following operation:
```
HobLength = (UINT16)((HobLength + 0x7) & (~0x7)
