From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by spool.mail.gandi.net (Postfix) with ESMTPS id 40A41D8062F for ; Thu, 11 Jan 2024 08:35:43 +0000 (UTC) DKIM-Signature: a=rsa-sha256; bh=j/9Oqba3r37SvftT1NT+FkNBPUaHW95BIG2qsEiuR1s=; c=relaxed/simple; d=groups.io; h=ARC-Seal:ARC-Message-Signature:ARC-Authentication-Results:From:To:CC:Subject:Thread-Topic:Thread-Index:Date:Message-ID:References:In-Reply-To:Accept-Language:MIME-Version:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Language:Content-Type:Content-Transfer-Encoding; s=20140610; t=1704962142; v=1; b=NyIgPJz7wMjXsWMEJ48zbgN/UhLKAOXs/a7GbDcL2Xa3jis9zwIdA4j8MYdBq2EV9xPaHPg+ v81IgtHwhi7bxLRHSWAE96f44fyxAkpqtj9A1DyULP8KHTJ0k/QDMWt/SsiDEevZwphsWvcZIEr EqDrBk1+l5sCiXxl8TS2XSSU= X-Received: by 127.0.0.2 with SMTP id 26M8YY7687511xzsWyVSyRpS; Thu, 11 Jan 2024 00:35:42 -0800 X-Received: from mgamail.intel.com (mgamail.intel.com [134.134.136.20]) by mx.groups.io with SMTP id smtpd.web10.7386.1704962141989571812 for ; Thu, 11 Jan 2024 00:35:42 -0800 X-IronPort-AV: E=McAfee;i="6600,9927,10949"; a="389217991" X-IronPort-AV: E=Sophos;i="6.04,185,1695711600"; d="scan'208";a="389217991" X-Received: from fmsmga003.fm.intel.com ([10.253.24.29]) by orsmga101.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 11 Jan 2024 00:35:41 -0800 X-ExtLoop1: 1 X-IronPort-AV: E=McAfee;i="6600,9927,10949"; a="872949876" X-IronPort-AV: E=Sophos;i="6.04,185,1695711600"; d="scan'208";a="872949876" X-Received: from orsmsx603.amr.corp.intel.com ([10.22.229.16]) by FMSMGA003.fm.intel.com with ESMTP/TLS/AES256-GCM-SHA384; 11 Jan 2024 00:35:41 -0800 X-Received: from orsmsx610.amr.corp.intel.com (10.22.229.23) by ORSMSX603.amr.corp.intel.com (10.22.229.16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.35; Thu, 11 Jan 2024 00:35:40 -0800 X-Received: from ORSEDG601.ED.cps.intel.com (10.7.248.6) by orsmsx610.amr.corp.intel.com (10.22.229.23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.35 via Frontend Transport; Thu, 11 Jan 2024 00:35:40 -0800 X-Received: from NAM11-CO1-obe.outbound.protection.outlook.com (104.47.56.169) by edgegateway.intel.com (134.134.137.102) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.35; Thu, 11 Jan 2024 00:35:40 -0800 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=gVmW8ZMa1jjO9z61i169mOMTg7Gukb9OELHtVLRGJK5uCvXxNO6A79VYbkjqElvnMmsEJFsBNoblMmwXUrfjIltconjXmobDNK9E9YODNZEzPvOH1apkNnmYu1KWOMJjCQ7+UBoOussLLr50mP19ljO/UzOAhiS1sLZ/k/RiMtI/5On/O/kpoF+N+/MgxNYMJiSfPtjAtFymztx1n5g12HsuCI/Q0uO3M+MpUdu3fTTM7y9bSgli0CzM/ZHdQ4OriAVAopGyGtovVMH6Wvdjh3DjEg7JcZcDfVRyzwgVDTZVggSDInOk6RnTVZrVZrQDmAtmA18AOjb+C5/ihIyV/A== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=/SdzqWd1QOUdaAzdRy3sOVckJDFF7eSvho/okXZWKVU=; b=hwLazRNbCcI9vTq9BjMKMXQAask5N66sUDp20iw8+VKlYT78pP64JPLgPv70zcScz/yvXUgZ3Hz5pAWjri3fSlAFRCjrOy7Uo+faYOWzybowyq++053I6+9w4UPFb35y4ssp6a020EGK4Ezwsw5Kxd7M21KrfFKjGsYmgjyC0lLGRWpgR7YRloFJDCTec88o35KoveZbo2S075fn+A3l8BehZPAnLKMNxAG7SG1LP0M1E8oDTXiMnfQZg0+x+9KPCz0ZDyYAeN3nY6eITM/T+ayE1EQNQgiApeDhX772GVUsi7EvKO20RGetpzfqBtfGDVrmBqps7BIfgGMfSDhf3Q== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none X-Received: from BL1PR11MB5478.namprd11.prod.outlook.com (2603:10b6:208:31d::12) by CY5PR11MB6488.namprd11.prod.outlook.com (2603:10b6:930:30::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7181.17; Thu, 11 Jan 2024 08:35:37 +0000 X-Received: from BL1PR11MB5478.namprd11.prod.outlook.com ([fe80::1732:8b4d:9f8b:3e2f]) by BL1PR11MB5478.namprd11.prod.outlook.com ([fe80::1732:8b4d:9f8b:3e2f%6]) with mapi id 15.20.7181.015; Thu, 11 Jan 2024 08:35:37 +0000 From: "Guo, Gua" To: "devel@edk2.groups.io" , "Guo, Gua" , Gerd Hoffmann , "Mathews, John" , "Zimmer, Vincent" CC: "ardb+tianocore@kernel.org" Subject: Re: [edk2-devel] [PATCH v1 0/4] Bz4166: Integer Overflow in CreateHob() Thread-Topic: [edk2-devel] [PATCH v1 0/4] Bz4166: Integer Overflow in CreateHob() Thread-Index: AQHaRE1A0l27BpWZCEuw10OaXOQJaLDUSLWQ Date: Thu, 11 Jan 2024 08:35:37 +0000 Message-ID: References: <17A9331C4FE606BC.28944@groups.io> In-Reply-To: <17A9331C4FE606BC.28944@groups.io> Accept-Language: en-US X-Mentions: kraxel@redhat.com,john.mathews@intel.com,vincent.zimmer@intel.com X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-publictraffictype: Email x-ms-traffictypediagnostic: BL1PR11MB5478:EE_|CY5PR11MB6488:EE_ x-ms-office365-filtering-correlation-id: 06380d4e-650c-46e4-6f39-08dc12804982 x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam-message-info: 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 x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?us-ascii?Q?u2O1Flu/oBJ9PNGvBa7eYggjHMXVvNZiFXJB5bB5WArPRrDfKLItd5ffcU1R?= =?us-ascii?Q?X4XsLIZafQEftZg0mlkR24fv9wiHw0uZTNID272b+iWHai/zLv1C9UWx2YiK?= =?us-ascii?Q?m0fJssUDDMWm3d6tGqf1JjkC2+FFoD+Su8pusvjjJ5zmmXIQheNDTMpC4Z8b?= =?us-ascii?Q?RD9CXsWdbjZ7y1nNDZov2LcxjMP1JWnq4MG3Yf4heWim9AN0U6nk/JB2OcUI?= =?us-ascii?Q?0MDA9qrGn1hQg0b8kAnvK/dYg9rSu6fJx7Ljo83O5gnvawnSGH9vWsIti3DM?= =?us-ascii?Q?dcqkQjuBJipLuk9LIivwL8P1/lEqfmTd78bQ5V9Hp0N1k7Eff9jP3xUVwPQm?= =?us-ascii?Q?33/hL9zzShfHIF8gMWCCV3k9FDwjnFy/L9DaPhkSLjiBUpM1OZ4bZInCXpys?= =?us-ascii?Q?o+BmLdTmbumjvGF5BdaaXvugH1iUl1MyGWxr9/I+uz1bEV6TuECModLlMqev?= =?us-ascii?Q?37EVpcLWyDMrROX9F/iPhkao9zS1AkUDODeIU07knXWJUVN0yFHPhWeGUPnT?= =?us-ascii?Q?TMpxhcMvqiTOLfbyBIGIZlwxfQAGjaL397PRcbqnZ3K3KpzM/fELFJXIhJcX?= =?us-ascii?Q?pw3x5KV+B+jGvXd52/h/waRh+Vu4wWGE3Vst6Tmins0ryL6j1OS68J48cPzR?= =?us-ascii?Q?13Ox3P+rjfpsNigNb74VJG3LgjnmI8m4QYnJA9GmoT4iDGpv1Iuscz66ufe0?= =?us-ascii?Q?MvJWYsYdQNTm+sGHJDHyAdpjGTvyigH8EkMH5oHTZHSsaH86UKQkMQpbvlCK?= =?us-ascii?Q?5x/CH7r138nNg4ts2eeaohW3ukNJtHkyXWig+dLqA/A4llv4YjJd/uPQuMM5?= =?us-ascii?Q?6N/nX7/HWMt1fFgF43l2qqS0oRw+L4Mjr6s2JtAp8kseMJ5wnudxLEOOB5/X?= =?us-ascii?Q?RwLZB+NYfEAP4pNIE/J3MuTYvaEY8Svxzks4NosbMLWapm73ZdPv80FlyhMX?= =?us-ascii?Q?ujydLBsaM+Gl9N7ECLi9mcTKzeMqbGcKzOnb9NciRd1yoB70qhW8Zn8SuvJS?= =?us-ascii?Q?q6Lql8b8yNM7q1JkHlytFnGNKZz9U1V26DQsNPBkKpEVL7+Bd6Km8jkc2mWS?= =?us-ascii?Q?LlCXniRa+xQalfBYhiq6PMiKrp33b4swaeUkhP2b8aix+9Nal/2napBGAsHu?= =?us-ascii?Q?gK057aTXtcdpE2orpsmA3hg5udm3Xlq4kKwtaQj1+Z6AwrAmpwBsyLsz6xFv?= =?us-ascii?Q?VKHhT677CrAOaJG35TCjBhS4hr5ERr3yfZWevU2TvJ3x9agaI8NNxHZJu4Tp?= =?us-ascii?Q?747BKIMtdQGsWn0Lf9br71v/3GTP4yErBlKsu75GNqelcUVCbaTEFQjC7Ikr?= =?us-ascii?Q?BxSyjKXWhORTDn6CLShG0Qt2eB6fGJ+oGhtMIHYrhLjHMiamzFxw0493kps7?= =?us-ascii?Q?QxnSp8i8UymUswYxhMjgy26jufqfnc8bO1+uLQzVSZRlbdOJP0MY7h0lp2JV?= =?us-ascii?Q?V3XdmO/KJOUKxwwhWhEGP52OQVQhDAoThFmsShHAUjPoi0k7UKKuHADHLw9u?= =?us-ascii?Q?SvGKIXdbGJz0w+sOCmpKtlFMvnCxPqnJcQwIDXFvpq6Qxl9LvgxqxjDW86Pa?= =?us-ascii?Q?zOtZCDwdZbRyO3+3xtHjfUuZIhAASn1htKM3qNgX?= MIME-Version: 1.0 X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: BL1PR11MB5478.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 06380d4e-650c-46e4-6f39-08dc12804982 X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Jan 2024 08:35:37.8003 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: 8qytR2kIZRoVvn7BfOJHrrncMeFCN+zj1Lqudc5KRNCt9UP1d6KEURmaw6qmg0WI+RhYAD5YQ1ZE3pkGLTXwCg== X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY5PR11MB6488 X-OriginatorOrg: intel.com Precedence: Bulk List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,gua.guo@intel.com List-Unsubscribe-Post: List-Unsubscribe=One-Click List-Unsubscribe: X-Gm-Message-State: IWYdKw4vWda7N8OLUSR8hHPZx7686176AA= Content-Language: en-US Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable X-GND-Status: LEGIT Authentication-Results: spool.mail.gandi.net; dkim=pass header.d=groups.io header.s=20140610 header.b=NyIgPJz7; spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce@groups.io; dmarc=fail reason="SPF not aligned (relaxed), DKIM not aligned (relaxed)" header.from=intel.com (policy=none); arc=reject ("signature check failed: fail, {[1] = sig:microsoft.com:reject}") CC: @Mathews, John and @Zimmer, Vincent Hi @Gerd Hoffmann My company teammate share me your patch can resolved https://bugzilla.tiano= core.org/show_bug.cgi?id=3D4166. So the signed-off name is your name.=20 If you have any concern, you can also share for me, if you don't have conce= rn please also let me know, before merging it. It's PR https://github.com/tianocore/edk2/pull/5252/ Thanks, Gua -----Original Message----- From: devel@edk2.groups.io On Behalf Of Guo, Gua Sent: Thursday, January 11, 2024 1:15 PM To: devel@edk2.groups.io Cc: Guo, Gua Subject: [edk2-devel] [PATCH v1 0/4] Bz4166: Integer Overflow in CreateHob(= ) From: Gua Guo Fix Integer Overflow for CVE-2022-36765 1. UefiPayloadPkg/Hob: Integer Overflow in CreateHob() 2. StandaloneMmPkg/H= ob: Integer Overflow in CreateHob() 3. EmbeddedPkg/Hob: Integer Overflow in= CreateHob() 4. MdeModulePkg/Hob: Integer Overflow in CreateHob() Gerd Hoffmann (4): UefiPayloadPkg/Hob: Integer Overflow in CreateHob() StandaloneMmPkg/Hob: Integer Overflow in CreateHob() EmbeddedPkg/Hob: Integer Overflow in CreateHob() MdeModulePkg/Hob: Integer Overflow in CreateHob() EmbeddedPkg/Library/PrePiHobLib/Hob.c | 6 ++++++ MdeModulePkg/Core/Pei/Hob/Hob.c | 2 +- .../StandaloneMmCoreHobLib/Arm/StandaloneMmCoreHobLib.c | 6 ++++++ UefiPayloadPkg/Library/PayloadEntryHobLib/Hob.c | 6 ++++++ 4 files changed, 19 insertions(+), 1 deletion(-) -- 2.39.2.windows.1 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#113593): https://edk2.groups.io/g/devel/message/113593 Mute This Topic: https://groups.io/mt/103657270/7686176 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-