edk2.git - Cross-platform firmware development environment

diff options

author	Gary Ching-Pang Lin <glin@suse.com>	2013-08-18 07:04:02 +0000
committer	jljusten <jljusten@6f19259b-4bc3-4df7-8a09-765794883524>	2013-08-18 07:04:02 +0000
commit	dfd3119ab2e28b60b33b65b49249124994ffce63 (patch)
tree	c4de17ef0dfff4facbb416928ee64e9897773985 /OvmfPkg/Library/ResetSystemLib/ResetSystemLib.c
parent	4388b0ee0c87e88071b1056429c8294305f36d1b (diff)
download	edk2-dfd3119ab2e28b60b33b65b49249124994ffce63.tar.gz edk2-dfd3119ab2e28b60b33b65b49249124994ffce63.tar.bz2 edk2-dfd3119ab2e28b60b33b65b49249124994ffce63.zip

OvmfPkg/SecureBootConfigDxe: Avoid illegal access

When enrolling the certificate from a file, the suffix check function check the last 4 characters to filter out non-DER files. However, if the length of the file name is less than 4, the address prior to the file name will be accessed while it shouldn't. This commit checks the length of the file name to avoid illegal access. Contributed-under: TianoCore Contribution Agreement 1.0 Signed-off-by: Gary Ching-Pang Lin <glin@suse.com> Reviewed-by: Laszlo Ersek <lersek@redhat.com> Reviewed-by: Jordan Justen <jordan.l.justen@intel.com> Reviewed-by: Guo Dong <guo.dong@intel.com> git-svn-id: https://svn.code.sf.net/p/edk2/code/trunk/edk2@14556 6f19259b-4bc3-4df7-8a09-765794883524

Diffstat (limited to 'OvmfPkg/Library/ResetSystemLib/ResetSystemLib.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: