From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <bounce+27952+115406+7686176+12367111@groups.io>
Received: from mail02.groups.io (mail02.groups.io [66.175.222.108])
	by spool.mail.gandi.net (Postfix) with ESMTPS id 73A8ED8042C
	for <rebecca@openfw.io>; Tue, 13 Feb 2024 19:41:09 +0000 (UTC)
DKIM-Signature: a=rsa-sha256; bh=QQalMI2KvJSQoJK7kqXqTZCuaGlif4uO01F1aEwyT80=;
 c=relaxed/simple; d=groups.io;
 h=From:To:Cc:Subject:Date:Message-Id:MIME-Version:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Transfer-Encoding;
 s=20140610; t=1707853268; v=1;
 b=GdlgvzZMnvoyZSUVQVM5NZo1x7z5DuY5oR2y4Ji0IRwYeaPGMRSM4KBC7iEZ5iF3l4bQz0HU
 1s4yDuF8MemEkMjGpO6r8KwDYn07/lM92pg5BOL5ZAA1Lh0CEzc7WRXFAl6dL1L97tgIPM2P27E
 Esu8dpOICEShVUKjCHg2GsEU=
X-Received: by 127.0.0.2 with SMTP id 98j8YY7687511xMbtPhxWZR4; Tue, 13 Feb 2024 11:41:08 -0800
X-Received: from mail-pl1-f169.google.com (mail-pl1-f169.google.com [209.85.214.169])
 by mx.groups.io with SMTP id smtpd.web10.22882.1707853267421313761
 for <devel@edk2.groups.io>;
 Tue, 13 Feb 2024 11:41:07 -0800
X-Received: by mail-pl1-f169.google.com with SMTP id d9443c01a7336-1d746856d85so35715885ad.0
        for <devel@edk2.groups.io>; Tue, 13 Feb 2024 11:41:07 -0800 (PST)
X-Gm-Message-State: l8eYX1LIfgl7trfnSWdf0nH0x7686176AA=
X-Google-Smtp-Source: AGHT+IH44Hv3DRIxrHdw0zMns74HgfbpwX8FceSIMRGY1ZtQcaK86thqqnjP14KOwfjnTuFrpxVtNw==
X-Received: by 2002:a17:902:db06:b0:1db:4b0e:ea5f with SMTP id m6-20020a170902db0600b001db4b0eea5fmr624522plx.52.1707853266526;
        Tue, 13 Feb 2024 11:41:06 -0800 (PST)
X-Forwarded-Encrypted: i=1; AJvYcCXp4rBA5BKjdEbINPVFq3V34PjCGqVW2xdJ8AzRefFhghphGXbVjXC97YIRx3GjKASsyrSAmupig0Q4y7L2RvHqL2fJiBi4SUx9an/3aPLlnxpnTuv5/8afN/yd1DqM75MiQOJJAupwoZtjpKzsiQ8tuQ2OJP8b7vhJY8iPAuxHrZiWIDti3cQHNti09gvHUiaH7to+07aeyoqw5ROdPRBdo51oDAJe4WUoC3sDNZgkvOTBTw==
X-Received: from localhost.localdomain ([131.107.147.247])
        by smtp.gmail.com with ESMTPSA id ks6-20020a170903084600b001d9588f0714sm2436189plb.177.2024.02.13.11.41.05
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Tue, 13 Feb 2024 11:41:06 -0800 (PST)
From: "Doug Flick via groups.io" <dougflick=microsoft.com@groups.io>
To: devel@edk2.groups.io
Cc: Doug Flick <doug.edk2@gmail.com>,
	Saloni Kasbekar <saloni.kasbekar@intel.com>,
	Zachary Clark-williams <zachary.clark-williams@intel.com>,
	Andrew Fish <afish@apple.com>,
	Leif Lindholm <quic_llindhol@quicinc.com>,
	Michael D Kinney <michael.d.kinney@intel.com>
Subject: [edk2-devel] [PATCH v2 0/4] Corrects additional concern in NetworkPkg
Date: Tue, 13 Feb 2024 10:45:59 -0800
Message-Id: <20240213184603.2985-1-doug.edk2@gmail.com>
MIME-Version: 1.0
Precedence: Bulk
List-Subscribe: <mailto:devel+subscribe@edk2.groups.io>
List-Help: <mailto:devel+help@edk2.groups.io>
Sender: devel@edk2.groups.io
List-Id: <devel.edk2.groups.io>
Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io
Reply-To: devel@edk2.groups.io,dougflick@microsoft.com
List-Unsubscribe-Post: List-Unsubscribe=One-Click
List-Unsubscribe: <https://edk2.groups.io/g/devel/leave/12367111/7686176/1913456212/plugh>
Content-Transfer-Encoding: 8bit
X-GND-Status: LEGIT
Authentication-Results: spool.mail.gandi.net;
	dkim=pass header.d=groups.io header.s=20140610 header.b=GdlgvzZM;
	spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce@groups.io;
	dmarc=pass (policy=none) header.from=groups.io

After talking with Micheal Kinney, I was advised to resend
these with edk2-stable202402, and CC Stewards.

These patches are time sensitive and need reviews.

This patch series corrects an additional security concern
found in Dhc6Dxe related to CVE-2023-45229. 

Additionally this fixes some issues on the mailing list
that were not pulled in before merging into Edk2.

Cc: Saloni Kasbekar <saloni.kasbekar@intel.com>
Cc: Zachary Clark-williams <zachary.clark-williams@intel.com>

Cc: Andrew Fish <afish@apple.com>
Cc: Leif Lindholm <quic_llindhol@quicinc.com>
Cc: Michael D Kinney <michael.d.kinney@intel.com>

Signed-off-by: Doug Flick [MSFT] <doug.edk2@gmail.com>

Doug Flick (4):
  NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Related Patch
  NetworkPkg: Dhcp6Dxe: Removes duplicate check and replaces with macro
  NetworkPkg: Dhcp6Dxe: Packet-Length is not updated before appending
  NetworkPkg: : Updating SecurityFixes.yaml

 NetworkPkg/Dhcp6Dxe/Dhcp6Io.h      | 22 ++++++
 NetworkPkg/Dhcp6Dxe/Dhcp6Io.c      | 70 +++++++++++++++-----
 NetworkPkg/Dhcp6Dxe/Dhcp6Utility.c | 46 ++++++-------
 NetworkPkg/SecurityFixes.yaml      |  1 +
 4 files changed, 96 insertions(+), 43 deletions(-)

-- 
2.34.1


-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#115406): https://edk2.groups.io/g/devel/message/115406
Mute This Topic: https://groups.io/mt/104339705/7686176
Group Owner: devel+owner@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io]
-=-=-=-=-=-=-=-=-=-=-=-