lzeng14 3588bb3529 If DataSize or VariableNameSize is near MAX_ADDRESS, this can cause the computed PayLoadSize to overflow to a small value and pass the check in InitCommunicateBuffer(). To protect against this vulnerability, check DataSize and VariableNameSize to make sure PayloadSize doesn't overflow. ... Signed-off-by: Star Zeng <star.zeng@intel.com> Reviewed-by: Ruiyu Ni <ruiyu.ni@intel.com> git-svn-id: https://edk2.svn.sourceforge.net/svnroot/edk2/trunk/edk2@14252 6f19259b-4bc3-4df7-8a09-765794883524		2013-04-08 06:56:08 +00:00
..
Application/VariableInfo	Clean up the private GUID definition in module Level.	2011-09-18 12:25:27 +00:00
Include	Fix coding style issue	2012-11-28 08:49:21 +00:00
Library	Fix a bug that IsSignatureFoundInDatabase() incorrectly computes CertCount.	2013-03-06 01:42:04 +00:00
Tcg	Fix Gcc build error	2012-11-29 02:12:32 +00:00
UserIdentification	Fixed build failed.	2012-05-31 08:35:48 +00:00
VariableAuthenticated	If DataSize or VariableNameSize is near MAX_ADDRESS, this can cause the computed PayLoadSize to overflow to a small value and pass the check in InitCommunicateBuffer(). To protect against this vulnerability, check DataSize and VariableNameSize to make sure PayloadSize doesn't overflow.	2013-04-08 06:56:08 +00:00
Contributions.txt	EDK II Packages: Add Contributions.txt and License.txt files	2012-04-11 23:19:46 +00:00
License.txt	Update copyright format	2012-04-24 06:49:39 +00:00
SecurityPkg.dec	Rename Trusted Hob to Measured FV hob and add Guided Hob layout structure	2012-09-28 00:57:02 +00:00
SecurityPkg.dsc	1.Measure ACPI table data comes from flash event type EV_POST_CODE ACPI DATA to PCR[0]	2012-11-27 05:16:15 +00:00