Further mitigations against CVE-2023-40546 as a class - efi-boot-shim.git - (mirror of https://github.com/vyos/efi-boot-shim.git)

diff options

author	Peter Jones <pjones@redhat.com>	2023-08-02 14:36:09 -0400
committer	Peter Jones <pjones@redhat.com>	2023-12-05 13:20:00 -0500
commit	dae82f6bd72cf600e5d48046ec674a441d0f49d7 (patch)
tree	eadbb1b30a112a24d004d729596e5e8162693140 /include
parent	96dccc255b16e9465dbee50b3cef6b3db74d11c8 (diff)
download	efi-boot-shim-dae82f6bd72cf600e5d48046ec674a441d0f49d7.tar.gz efi-boot-shim-dae82f6bd72cf600e5d48046ec674a441d0f49d7.zip

Further mitigations against CVE-2023-40546 as a class

In CVE-2023-40546, an incorrect invocation of LogError() causes a read from the page at address 0, which on newer systems will correctly cause a fault. The immediate fix for this CVE is to fix the invocation so that the error is logged correctly, but there is more that can be done. This patch adds additional checks to ensure that the format specifier on any of these invocations can not be NULL, thereby mitigating this entire class of error from creating a fault. Additionally, most of these checks are done using _Static_assert(), so they should normally be triggered at compile time. Signed-off-by: Peter Jones <pjones@redhat.com>

Diffstat (limited to 'include')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: