diff options
author | Marvin H?user <Marvin.Haeuser@outlook.com> | 2017-07-20 23:11:37 -0700 |
---|---|---|
committer | Michael D Kinney <michael.d.kinney@intel.com> | 2017-08-16 19:42:17 -0700 |
commit | 4e33ff75d9dccd3a59f70eeeaff9e3208426f63e (patch) | |
tree | 2ca8c588a5b9d7325bdacbcfedaa1aa2b2ee8558 /QuarkSocPkg | |
parent | 6619cf3b6a84397ceff5d856111a33f9cdfb0812 (diff) | |
download | edk2-4e33ff75d9dccd3a59f70eeeaff9e3208426f63e.tar.gz edk2-4e33ff75d9dccd3a59f70eeeaff9e3208426f63e.tar.bz2 edk2-4e33ff75d9dccd3a59f70eeeaff9e3208426f63e.zip |
QuarkSocPkg/QNCSmmDispatcher: Fix use after free issue #2
As part of commit 5f82e02, ActiveRecordInDb was introduced as a copy
of RecordInDb as latter may be freed by the callback function. This
commit replaces an access of RecordInDb after the callback function
has been executed with an access to ActiveRecordInDb.
Cc: Michael D Kinney <michael.d.kinney@intel.com>
Cc: Kelly Steele <kelly.steele@intel.com>
Contributed-under: TianoCore Contribution Agreement 1.1
Signed-off-by: Marvin Haeuser <Marvin.Haeuser@outlook.com>
Reviewed-by: Michael D Kinney <michael.d.kinney@intel.com>
Diffstat (limited to 'QuarkSocPkg')
-rw-r--r-- | QuarkSocPkg/QuarkNorthCluster/Smm/DxeSmm/QncSmmDispatcher/QNCSmmCore.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/QuarkSocPkg/QuarkNorthCluster/Smm/DxeSmm/QncSmmDispatcher/QNCSmmCore.c b/QuarkSocPkg/QuarkNorthCluster/Smm/DxeSmm/QncSmmDispatcher/QNCSmmCore.c index c2f75f8664..a887bb86b6 100644 --- a/QuarkSocPkg/QuarkNorthCluster/Smm/DxeSmm/QncSmmDispatcher/QNCSmmCore.c +++ b/QuarkSocPkg/QuarkNorthCluster/Smm/DxeSmm/QncSmmDispatcher/QNCSmmCore.c @@ -2,7 +2,7 @@ This driver is responsible for the registration of child drivers
and the abstraction of the QNC SMI sources.
-Copyright (c) 2013-2016 Intel Corporation.
+Copyright (c) 2013-2017 Intel Corporation.
This program and the accompanying materials
are licensed and made available under the terms and conditions of the BSD License
@@ -758,7 +758,7 @@ QNCSmmCoreDispatcher ( }
}
- if (RecordInDb->ClearSource == NULL) {
+ if (ActiveRecordInDb.ClearSource == NULL) {
//
// Clear the SMI associated w/ the source using the default function
//
|