Permalink
Show file tree
Hide file tree
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Browse files
Browse the repository at this point in the history
tss2_rc: ensure layer number is in bounds
The layer handler array was defined as 255, the max number of uint8, which is the size of the layer field, however valid values are 0-255 allowing for 256 possibilities and thus the array was off by one and needed to be sized to 256 entries. Update the size and add tests. Note: previous implementations incorrectly dropped bits on unknown error output, ie TSS2_RC of 0xFFFFFF should yeild a string of 255:0xFFFFFF, but earlier implementations returned 255:0xFFFF, dropping the middle bits, this patch fixes that. Fixes: CVE-2023-22745 Signed-off-by: William Roberts <william.c.roberts@intel.com>
- Loading branch information
1 parent
6c2f14c
commit 306490c
Showing
2 changed files
with
41 additions
and
11 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters