andrius
/
arm-trusted-firmware
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
arm-trusted-firmware/common
History
David Horstmann d0d642450f fix(fdt): fix OOB write in uuid parsing function 
The function read_uuid() zeroes the UUID destination buffer
on error. However, it mistakenly uses the dest pointer
that has been incremented many times during the parsing,
leading to an out-of-bounds write.

To fix this, retain a pointer to the start of the buffer,
and use this when clearing it instead.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
Change-Id: Iee8857be5d3f383ca2eab86cde99a43bf606f306
 		2021-07-26 16:42:25 +01:00
..
aarch32 Align AARCH32 version of debug.S with AARCH64 2020-09-21 17:53:42 +02:00
aarch64 Print newline after hex address in aarch64 el3_panic function 2021-03-04 11:05:31 +01:00
backtrace Don't return error information from console_flush 2020-10-09 10:21:50 -05:00
bl_common.c Increase type widths to satisfy width requirements 2020-10-12 10:55:03 -05:00
desc_image_load.c SPMD: extract SPMC DTB header size from SPMD 2020-05-13 08:08:39 +02:00
fdt_fixup.c fdt: Use proper #address-cells and #size-cells for reserved-memory 2021-03-23 18:08:45 +01:00
fdt_wrappers.c feat(fdt): introduce wrapper function to read DT UUIDs 2021-04-28 12:13:12 +01:00
hw_crc32.c feat(hw_crc): add support for HW computed CRC 2021-05-19 19:34:34 +01:00
image_decompress.c Sanitise includes across codebase 2019-01-04 10:43:17 +00:00
runtime_svc.c Remove support for the SMC Calling Convention 2.0 2019-01-30 16:01:49 +00:00
tf_log.c Remove references to old project name from common files 2019-07-10 11:13:00 +01:00
uuid.c fix(fdt): fix OOB write in uuid parsing function 2021-07-26 16:42:25 +01:00