Closed os-d closed 1 month ago
All modified and coverable lines are covered by tests :white_check_mark:
Project coverage is 1.59%. Comparing base (
2acf969
) to head (726ee0d
).
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
Description
This PR aims to prevent a buffer overrun issue found in FtwGetLastWriteHeader function.As per the current code, when there is a malformed blocks (with all bytes as 0s) then
Offset += FTW_WRITE_TOTAL_SIZE (FtwHeader->NumberOfWrites, FtwHeader->PrivateDataSize)
would access beyond FtwWorkSpaceSize.Also added the signature check to validate work space
[x] Impacts functionality?
[ ] Impacts security?
[ ] Breaking change?
[ ] Includes tests?
[ ] Includes documentation?
How This Was Tested
Cherry-picked from edk2.
Integration Instructions
N/A.