Commit 5104405b authored by Ross Lagerwall's avatar Ross Lagerwall Committed by Xie XiuQi
Browse files

ACPI: APEI: Fix possible out-of-bounds access to BERT region 



mainline inclusion
from mainline-5.0
commit 1c0d9b1c
category: bugfix
bugzilla: 11629
CVE: NA

-------------------------------------------------

Check that the length recorded in the generic error status block is
within the region before checking the contents of the region itself.

Otherwise it may result in an out-of-bounds access if the system
firmware has generated a status block with an invalid length (larger
than the mapped region). Also move the block_status check so that it
only happens after the block has been verified to be within the mapped
region.

Signed-off-by: default avatarRoss Lagerwall <ross.lagerwall@citrix.com>
Acked-by: default avatarBorislav Petkov <bp@suse.de>
Tested-by: default avatarTyler Baicar <baicar.tyler@gmail.com>
Signed-off-by: default avatarRafael J. Wysocki <rafael.j.wysocki@intel.com>
Signed-off-by: default avatarXiongfeng Wang <wangxiongfeng2@huawei.com>
Reviewed-by: default avatarYao Hongbo <yaohongbo@huawei.com>
Signed-off-by: default avatarYang Yingliang <yangyingliang@huawei.com>
parent 7c250b79
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please to comment