Also avoid CVE-2022-28737 in verify_image() - efi-boot-shim.git - (mirror of https://github.com/vyos/efi-boot-shim.git)

diff options

author	Peter Jones <pjones@redhat.com>	2022-05-03 17:05:20 -0400
committer	Peter Jones <pjones@redhat.com>	2022-05-24 16:28:35 -0400
commit	159151b6649008793d6204a34d7b9c41221fb4b0 (patch)
tree	20f09ec880dc427d96ad45cd6190898461b215b1 /Cryptlib/OpenSSL/crypto/objects
parent	9a09faf390eea083c3bef1b07c7e043ebe0cc1f6 (diff)
download	efi-boot-shim-159151b6649008793d6204a34d7b9c41221fb4b0.tar.gz efi-boot-shim-159151b6649008793d6204a34d7b9c41221fb4b0.zip

Also avoid CVE-2022-28737 in verify_image()

PR 446 ("Add verify_image") duplicates some of the code affected by Chris Coulson's defense in depth patch against CVE-2022-28737 ("pe: Perform image verification earlier when loading grub"). This patch makes the same change to the new function. Signed-off-by: Peter Jones <pjones@redhat.com>

Diffstat (limited to 'Cryptlib/OpenSSL/crypto/objects')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: