coreboot-kgpe-d16/util/cbfstool
Alex Rebert 70282aece0 lz4: Fix out-of-bounds reads
Fix two out-of-bounds reads in lz4 decompression:

1) LZ4_decompress_generic could read one byte past the input buffer when
decoding variable length literals due to a missing bounds check. This
issue was resolved in libpayload, commonlib and cbfstool

2) ulz4fn could read up to 4 bytes past the input buffer when reading a
lz4_block_header due to a missing bounds check. This issue was resolved
in libpayload and commonlib.

Change-Id: I5afdf7e1d43ecdb06c7b288be46813c1017569fc
Signed-off-by: Alex Rebert <alexandre.rebert@gmail.com>
Found-by: Mayhem
Reviewed-on: https://review.coreboot.org/c/coreboot/+/39174
Tested-by: build bot (Jenkins) <no-reply@coreboot.org>
Reviewed-by: Patrick Georgi <pgeorgi@google.com>
2020-03-02 15:03:03 +00:00
..
console
flashmap util/*: more typo fixes 2020-01-30 13:47:49 +00:00
lz4 lz4: Fix out-of-bounds reads 2020-03-02 15:03:03 +00:00
lzma util/cbfstool/lzma: Make clang-11+'s indentation checker happy 2020-02-01 19:51:31 +00:00
EXAMPLE
Makefile
Makefile.inc cbfstool: Set deprecated _BSD_SOURCE and _SVID_SOURCE macros 2020-01-31 20:36:40 +00:00
ProcessorBind.h
amdcompress.c util/cbfstool: Add AMD BIOS compression tool for PSP 2019-07-03 21:28:43 +00:00
cbfs-mkpayload.c util/cbfstool: Fix typos 2020-01-30 13:01:00 +00:00
cbfs-mkstage.c commonlib: Add commonlib/bsd 2020-01-28 06:36:13 +00:00
cbfs-payload-linux.c util/cbfstool: Fix to build with latest llvm 2017-01-04 21:37:39 +01:00
cbfs.h
cbfs_image.c util/cbfstool: Fix typos 2020-01-30 13:01:00 +00:00
cbfs_image.h
cbfs_sections.c Klocwork: Fix the Null pointer derefernce found by klocwork 2019-04-23 09:56:37 +00:00
cbfs_sections.h tree: drop last paragraph of GPL copyright header 2015-10-31 21:37:39 +01:00
cbfscomptool.c cbfstool: fix implicit declaration of strcasecmp 2018-07-27 10:48:17 +00:00
cbfstool.c
coff.h
common.c util/cbfstool: Fix typos 2018-08-28 14:20:15 +00:00
common.h
compress.c commonlib: Add commonlib/bsd 2020-01-28 06:36:13 +00:00
default-x86.fmd
default.fmd drivers/mrc_cache: Always generate an FMAP region 2018-01-20 16:11:44 +00:00
description.md
elf.h util/*: more typo fixes 2020-01-30 13:47:49 +00:00
elfheaders.c util/cbfstool: Fix typos 2020-01-30 13:01:00 +00:00
elfparsing.h
fdt.h
fit.c util/cbfstool: Fix typos 2020-01-30 13:01:00 +00:00
fit.h
flashmap_tests.c
fmap_from_fmd.c
fmap_from_fmd.h
fmaptool.c
fmd.c util/cbfstool: avoid memleaks and off-by-ones 2017-03-20 20:05:09 +01:00
fmd.h
fmd_parser.c_shipped
fmd_parser.h_shipped
fmd_parser.y
fmd_scanner.c_shipped
fmd_scanner.h_shipped cbfstool: Support new FMD flag "PRESERVE" 2019-03-05 20:51:39 +00:00
fmd_scanner.l
fv.h
ifittool.c util/cbfstool: Remove unused assignment 2019-08-20 15:20:30 +00:00
ifwitool.c util/cbfstool: Fix typos 2020-01-30 13:01:00 +00:00
linux.h util/cbfstool: Fix typos 2018-08-28 14:20:15 +00:00
linux_trampoline.S linux_trampoline: use trampoline RAM for the GDT 2018-07-18 21:32:26 +00:00
linux_trampoline.c linux_trampoline: use trampoline RAM for the GDT 2018-07-18 21:32:26 +00:00
linux_trampoline.h
option.h tree: drop last paragraph of GPL copyright header 2015-10-31 21:37:39 +01:00
partitioned_file.c util/cbfstool: Close file on error 2019-07-10 18:21:00 +00:00
partitioned_file.h
rmodtool.c tree: drop last paragraph of GPL copyright header 2015-10-31 21:37:39 +01:00
rmodule.c util/cbfstool: Fix typos 2020-01-30 13:01:00 +00:00
rmodule.h util/cbfstool/rmodule.{c,h}: Fix typo and correct header 2018-11-22 14:58:38 +00:00
swab.h cbfstool: Add header file for ntohl & htonl on Apple 2016-01-20 16:10:20 +01:00
xdr.c