summaryrefslogtreecommitdiffstats
path: root/SecurityPkg
diff options
context:
space:
mode:
authorLeif Lindholm <leif.lindholm@linaro.org>2015-07-13 11:35:28 +0000
committerlgao4 <lgao4@Edk2>2015-07-13 11:35:28 +0000
commit2ad9cf37a492e69a4e1b7624d92d9a35fce083fc (patch)
treea773d20c02e7d9825d2133dec98fc147d9558230 /SecurityPkg
parent6bc4e42f9d043bcda03f03a74e6dec0aa5c0ead1 (diff)
downloadedk2-2ad9cf37a492e69a4e1b7624d92d9a35fce083fc.tar.gz
edk2-2ad9cf37a492e69a4e1b7624d92d9a35fce083fc.tar.bz2
edk2-2ad9cf37a492e69a4e1b7624d92d9a35fce083fc.zip
MdePkg: ensure SafeString length functions don't access beyond MaxSize
The StrnLenS and AsciiStrnLenS functions, when presented with a string with no terminating NULL in the first MaxSize characters will check the character at String[MaxSize] before checking if Length < MaxSize. (They return the correct value, but have accessed beyond the stated limit in the process.) Flip the order of the tests to prevent this behaviour. Contributed-under: TianoCore Contribution Agreement 1.0 Signed-off-by: Leif Lindholm <leif.lindholm@linaro.org> Reviewed-by: Jiewen Yao <jiewen.yao@intel.com> Reviewed-by: Liming Gao <liming.gao@intel.com> git-svn-id: https://svn.code.sf.net/p/edk2/code/trunk/edk2@17936 6f19259b-4bc3-4df7-8a09-765794883524
Diffstat (limited to 'SecurityPkg')
0 files changed, 0 insertions, 0 deletions