mirror of https://github.com/acidanthera/audk.git
1c440a5ece
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=4673 REF: https://bugzilla.tianocore.org/show_bug.cgi?id=4534 This was not part of the Quarkslab bugs however the same pattern as CVE-2023-45229 exists in Dhcp6UpdateIaInfo. This patch replaces the code in question with the safe function created to patch CVE-2023-45229 > > if (EFI_ERROR ( > Dhcp6SeekInnerOptionSafe ( > Instance->Config->IaDescriptor.Type, > Option, > OptionLen, > &IaInnerOpt, > &IaInnerLen > ) > )) > { > return EFI_DEVICE_ERROR; > } > Additionally corrects incorrect usage of macro to read the status > - StsCode = NTOHS (ReadUnaligned16 ((UINT16 *)DHCP6_OFFSET_OF_OPT_LEN (Option))); > + StsCode = NTOHS (ReadUnaligned16 ((UINT16 *) DHCP6_OFFSET_OF_STATUS_CODE (Option)); Cc: Saloni Kasbekar <saloni.kasbekar@intel.com> Cc: Zachary Clark-williams <zachary.clark-williams@intel.com> Signed-off-by: Doug Flick [MSFT] <doug.edk2@gmail.com> Reviewed-by: Saloni Kasbekar <saloni.kasbekar@intel.com> Reviewed-by: Leif Lindholm <quic_llindhol@quicinc.com> |
||
|---|---|---|
| .. | ||
| GoogleTest | ||
| ComponentName.c | ||
| Dhcp6Driver.c | ||
| Dhcp6Driver.h | ||
| Dhcp6Dxe.inf | ||
| Dhcp6Dxe.uni | ||
| Dhcp6DxeExtra.uni | ||
| Dhcp6Impl.c | ||
| Dhcp6Impl.h | ||
| Dhcp6Io.c | ||
| Dhcp6Io.h | ||
| Dhcp6Utility.c | ||
| Dhcp6Utility.h | ||