tyler.durden
/
audk
mirror of https://github.com/acidanthera/audk.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
audk/ShellPkg
History
Hao Wu 8c3e4688e0 ShellPkg/Shell: Avoid reading content beyond string boundary 
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=690

Within function EfiShellGetDevicePathFromFilePath(), when the input
parameter 'Path' string is like:
"FS0:"

It is possible for the below statement:
"if (*(Path+StrLen(MapName)+1) == CHAR_NULL) {"

to read the content 1 byte beyond the string boundary (both 'Path' and
'MapName' will be FS0: in this case).

This commit adds additional checks to avoid this.

Cc: Steven Shi <steven.shi@intel.com>
Contributed-under: TianoCore Contribution Agreement 1.1
Signed-off-by: Hao Wu <hao.a.wu@intel.com>
Reviewed-by: Jaben Carsey <jaben.carsey@intel.com>
Reviewed-by: Ruiyu Ni <ruiyu.ni@intel.com>
 		2017-09-21 14:06:06 +08:00
..
Application ShellPkg/Shell: Avoid reading content beyond string boundary 2017-09-21 14:06:06 +08:00
Include ShellPkg: Rename gShellCurDir to gShellCurMapping 2017-08-30 11:42:41 +08:00
Library ShellPkg/Ifconfig6: Update error message and add a new line 2017-09-12 16:41:08 +08:00
ShellPkg.dec ShellPkg: Update package version to 1.01 2017-05-03 10:44:55 +08:00
ShellPkg.dsc ShellPkg: Update package version to 1.01 2017-05-03 10:44:55 +08:00