audk/Opal at 96f5920d1d009fd2897f230e8bb49fe3f9a48aa0 - audk

History

Dong, Eric 4636e4426a SecurityPkg OpalPasswordDxe: Fix buffer overflow issue. In current code, PSID is processed as string and the length is 0x20. Current code only reserved 0x20 length buffer for it, no extra buffer for the '\0'. When driver call UnicodeStrToAsciiStrS to convert PSID, it search the '\0' for the end. So extra dirty data saved in PSID info which caused PSID revert action failed. This patch reserved extra 1 byte data for the '\0'. Contributed-under: TianoCore Contribution Agreement 1.0 Signed-off-by: Eric Dong <eric.dong@intel.com> Cc: Star Zeng <star.zeng@intel.com> Reviewed-by: Star Zeng <star.zeng@intel.com>	2016-08-03 09:21:27 +08:00
..
OpalPasswordDxe	SecurityPkg OpalPasswordDxe: Fix buffer overflow issue.	2016-08-03 09:21:27 +08:00
OpalPasswordSmm	SecurityPkg OpalPasswordSmm: Remove useless code.	2016-07-11 10:38:20 +08:00

Dong, Eric 4636e4426a SecurityPkg OpalPasswordDxe: Fix buffer overflow issue.

In current code, PSID is processed as string and the length is 0x20.
Current code only reserved 0x20 length buffer for it, no extra buffer
for the '\0'. When driver call UnicodeStrToAsciiStrS to convert PSID,
it search the '\0' for the end. So extra dirty data saved in PSID
info which caused PSID revert action failed. This patch reserved
extra 1 byte data for the '\0'.

Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Eric Dong <eric.dong@intel.com>
Cc: Star Zeng <star.zeng@intel.com>
Reviewed-by: Star Zeng <star.zeng@intel.com>

2016-08-03 09:21:27 +08:00

OpalPasswordDxe

SecurityPkg OpalPasswordDxe: Fix buffer overflow issue.

2016-08-03 09:21:27 +08:00

OpalPasswordSmm

SecurityPkg OpalPasswordSmm: Remove useless code.

2016-07-11 10:38:20 +08:00