git.proxmox.com Git - mirror_edk2.git/commit - SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.c

]> git.proxmox.com Git - mirror_edk2.git/commit - SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.c

author	Jian J Wang <jian.j.wang@intel.com>
	Thu, 10 Oct 2019 03:06:53 +0000 (11:06 +0800)
committer	mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
	Wed, 19 Feb 2020 14:08:23 +0000 (14:08 +0000)
commit	fbb96072233b5eaecf4d229cbee47b13dcab39e1
tree	5096a70e6274b466276c79ff9854c488edfef69c	tree
parent	578bcdc2605e3438b9cbdac4e68339f90f5bf8af	commit \| diff

SecurityPkg/DxeImageVerificationLib: Fix memory leaks (CVE-2019-14575)

REF: https://bugzilla.tianocore.org/show_bug.cgi?id=1608

Pointer HashCtx used in IsCertHashFoundInDatabase() is not freed inside
the while-loop, if it will run more than once.

Cc: Jiewen Yao <jiewen.yao@intel.com>
Cc: Chao Zhang <chao.b.zhang@intel.com>
Signed-off-by: Jian J Wang <jian.j.wang@intel.com>
Reviewed-by: Jiewen Yao <jiewen.yao@intel.com>

SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.c

diff | blob | blame | history

EFI Development Kit II mirror for PVE

RSS Atom