Re: [PATCH RESEND 0/1] security fix: possible heap corruption with LzmaUefiDecompressGetInfo


Laszlo Ersek
 

On 11/19/20 12:50, Laszlo Ersek wrote:
Repo: https://pagure.io/lersek/edk2.git
Branch: tianocore_1816_resend
Ref: https://bugzilla.tianocore.org/show_bug.cgi?id=1816

"RESEND" because I'm publicly posting the patch from
<https://bugzilla.tianocore.org/show_bug.cgi?id=1816#c9>.

The Reviewed-by tags on the patch originate from
<https://bugzilla.tianocore.org/show_bug.cgi?id=1816#c12> and
<https://bugzilla.tianocore.org/show_bug.cgi?id=1816#c17>.

Repeated the simple regression test at
<https://bugzilla.tianocore.org/show_bug.cgi?id=1816#c10>.

This series targets edk2-stable202011. I plan to merge it later this
week, based on Liming's R-b.

Liming, highlighting TianoCore#1816 in the "proposed features" list
could be useful.

Cc: Dandan Bi <dandan.bi@...>
Cc: Hao A Wu <hao.a.wu@...>
Cc: Jian J Wang <jian.j.wang@...>
Cc: Liming Gao <gaoliming@...>
Cc: Philippe Mathieu-Daudé <philmd@...>

Thanks!
Laszlo

Laszlo Ersek (1):
MdeModulePkg/LzmaCustomDecompressLib: catch 4GB+ uncompressed buffer
sizes

MdeModulePkg/Library/LzmaCustomDecompressLib/LzmaDecompressLibInternal.h | 5 +++++
MdeModulePkg/Library/LzmaCustomDecompressLib/LzmaDecompress.c | 7 +++++++
2 files changed, 12 insertions(+)
Merged as commit e7bd0dd26db7, via
<https://github.com/tianocore/edk2/pull/1138>.

Thanks,
Laszlo

Join devel@edk2.groups.io to automatically receive all group messages.