sravan/system76-edk2
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

SecurityPkg: Fix DBX Variable Read Error in ImageVerificationLib

Browse Source 
ImageVerificationLib passes wrong data buffer size when reading DBX variable, causing heap crash.

Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Chao Zhang <chao.b.zhang@intel.com>
Reviewed-by: Qin Long <qin.long@intel.com>

git-svn-id: https://svn.code.sf.net/p/edk2/code/trunk/edk2@17981 6f19259b-4bc3-4df7-8a09-765794883524
This commit is contained in:
Chao Zhang
2015-07-15 02:13:48 +00:00
committed by czhang46
parent 368110120b
commit 1ca3a09938
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.c
View File

@@ -1448,7 +1448,7 @@ IsAllowedByDb (
if (Status == EFI_BUFFER_TOO_SMALL) { if (Status == EFI_BUFFER_TOO_SMALL) {
goto Done; goto Done;
} }
DbxData = (UINT8 *) AllocateZeroPool (DataSize); DbxData = (UINT8 *) AllocateZeroPool (DbxDataSize);
if (DbxData == NULL) { if (DbxData == NULL) {
goto Done; goto Done;
} }