edk2-platforms.git - (https://github.com/tianocore/edk2-platforms)

diff options

author	Dong, Eric <eric.dong@intel.com>	2016-08-02 19:32:30 +0800
committer	Hao Wu <hao.a.wu@intel.com>	2016-08-03 09:50:42 +0800
commit	904e345d94f1ed6400f1fe5c4831bc1975971899 (patch)
tree	aa4d10defff3f47781596bb2038edd44a2ef110d /PcAtChipsetPkg/Include
parent	49680c684f7b0e3e77d7190943f842ca06b84c50 (diff)
download	edk2-platforms-904e345d94f1ed6400f1fe5c4831bc1975971899.tar.xz

SecurityPkg OpalPasswordDxe: Fix buffer overflow issue.

In current code, PSID is processed as string and the length is 0x20. Current code only reserved 0x20 length buffer for it, no extra buffer for the '\0'. When driver call UnicodeStrToAsciiStrS to convert PSID, it search the '\0' for the end. So extra dirty data saved in PSID info which caused PSID revert action failed. This patch reserved extra 1 byte data for the '\0'. Contributed-under: TianoCore Contribution Agreement 1.0 Signed-off-by: Eric Dong <eric.dong@intel.com> Cc: Star Zeng <star.zeng@intel.com> Reviewed-by: Star Zeng <star.zeng@intel.com> (cherry picked from commit 4636e4426a31802c25bd8409be9031c4d20324f4)

Diffstat (limited to 'PcAtChipsetPkg/Include')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: