subject:"\[edk2\-devel\] \[PATCH v1 3\/4\] EmbeddedPkg\/Hob\: Integer Overflow in CreateHob\(\)"

Re: [edk2-devel] [PATCH v1 3/4] EmbeddedPkg/Hob: Integer Overflow in CreateHob()

2024-01-10 Thread Ard Biesheuvel

On Thu, 11 Jan 2024 at 06:15, wrote: > > From: Gerd Hoffmann > > REF: https://bugzilla.tianocore.org/show_bug.cgi?id=4166 > > Fix integer overflow in various CreateHob instances. > Fixes: CVE-2022-36765 > > The CreateHob() function aligns the requested size to 8 > performing the following

[edk2-devel] [PATCH v1 3/4] EmbeddedPkg/Hob: Integer Overflow in CreateHob()

2024-01-10 Thread Guo, Gua

From: Gerd Hoffmann REF: https://bugzilla.tianocore.org/show_bug.cgi?id=4166 Fix integer overflow in various CreateHob instances. Fixes: CVE-2022-36765 The CreateHob() function aligns the requested size to 8 performing the following operation: ``` HobLength = (UINT16)((HobLength + 0x7) &