CLAassistant
commented
2 months ago
All committers have signed the CLA.
Open Crispy-fried-chicken opened 2 months ago
CLAassistant
commented
2 months ago
All committers have signed the CLA.
steven-bellock
commented
2 months ago SPDM is only used for confidential compute and 545 is not used / endorsed for confidential compute, so the code path should never be exercised.
Crispy-fried-chicken
commented
2 months ago @steven-bellock so is it necessary to backport this patch? and is my patch right? Thank you for your reply!
Here is a vulnerability CVE-2023-32690 in libspdm and you fix it in the main branch and 550 branch. Maybe it need to be backported to the 545.23 branch?