coreboot-kgpe-d16/util/cbfstool
Alex Rebert 70282aece0 lz4: Fix out-of-bounds reads
Fix two out-of-bounds reads in lz4 decompression:

1) LZ4_decompress_generic could read one byte past the input buffer when
decoding variable length literals due to a missing bounds check. This
issue was resolved in libpayload, commonlib and cbfstool

2) ulz4fn could read up to 4 bytes past the input buffer when reading a
lz4_block_header due to a missing bounds check. This issue was resolved
in libpayload and commonlib.

Change-Id: I5afdf7e1d43ecdb06c7b288be46813c1017569fc
Signed-off-by: Alex Rebert <alexandre.rebert@gmail.com>
Found-by: Mayhem
Reviewed-on: https://review.coreboot.org/c/coreboot/+/39174
Tested-by: build bot (Jenkins) <no-reply@coreboot.org>
Reviewed-by: Patrick Georgi <pgeorgi@google.com>
2020-03-02 15:03:03 +00:00
..
console
flashmap util/*: more typo fixes 2020-01-30 13:47:49 +00:00
lz4 lz4: Fix out-of-bounds reads 2020-03-02 15:03:03 +00:00
lzma util/cbfstool/lzma: Make clang-11+'s indentation checker happy 2020-02-01 19:51:31 +00:00
EXAMPLE
Makefile cbfstool: Add ifittool 2019-06-24 09:42:31 +00:00
Makefile.inc cbfstool: Set deprecated _BSD_SOURCE and _SVID_SOURCE macros 2020-01-31 20:36:40 +00:00
ProcessorBind.h
amdcompress.c util/cbfstool: Add AMD BIOS compression tool for PSP 2019-07-03 21:28:43 +00:00
cbfs-mkpayload.c util/cbfstool: Fix typos 2020-01-30 13:01:00 +00:00
cbfs-mkstage.c commonlib: Add commonlib/bsd 2020-01-28 06:36:13 +00:00
cbfs-payload-linux.c util/cbfstool: Fix to build with latest llvm 2017-01-04 21:37:39 +01:00
cbfs.h Remove MIPS architecture 2019-11-20 10:10:48 +00:00
cbfs_image.c util/cbfstool: Fix typos 2020-01-30 13:01:00 +00:00
cbfs_image.h util/cbfstool: Add optional argument ibb 2019-10-18 15:37:37 +00:00
cbfs_sections.c Klocwork: Fix the Null pointer derefernce found by klocwork 2019-04-23 09:56:37 +00:00
cbfs_sections.h
cbfscomptool.c cbfstool: fix implicit declaration of strcasecmp 2018-07-27 10:48:17 +00:00
cbfstool.c util/cbfstool: Add optional argument ibb 2019-10-18 15:37:37 +00:00
coff.h
common.c util/cbfstool: Fix typos 2018-08-28 14:20:15 +00:00
common.h util/cbfstool: Fix typos 2018-08-28 14:20:15 +00:00
compress.c commonlib: Add commonlib/bsd 2020-01-28 06:36:13 +00:00
default-x86.fmd Makefile.inc: Create a default SMMSTORE region 2019-02-06 18:15:59 +00:00
default.fmd drivers/mrc_cache: Always generate an FMAP region 2018-01-20 16:11:44 +00:00
description.md util: Add description.md to each util 2018-07-26 13:26:50 +00:00
elf.h util/*: more typo fixes 2020-01-30 13:47:49 +00:00
elfheaders.c util/cbfstool: Fix typos 2020-01-30 13:01:00 +00:00
elfparsing.h util/cbfstool: Fix typos 2018-08-28 14:20:15 +00:00
fdt.h util/cbfstool: Support FIT payloads 2018-06-15 09:13:24 +00:00
fit.c util/cbfstool: Fix typos 2020-01-30 13:01:00 +00:00
fit.h cbfstool: Drop update-fit option 2019-06-24 09:45:00 +00:00
flashmap_tests.c
fmap_from_fmd.c cbfstool: Support new FMD flag "PRESERVE" 2019-03-05 20:51:39 +00:00
fmap_from_fmd.h
fmaptool.c lib/fmap: Add optional pre-RAM cache 2019-11-14 03:30:11 +00:00
fmd.c util/cbfstool: avoid memleaks and off-by-ones 2017-03-20 20:05:09 +01:00
fmd.h cbfstool: Support new FMD flag "PRESERVE" 2019-03-05 20:51:39 +00:00
fmd_parser.c_shipped cbfstool: Support new FMD flag "PRESERVE" 2019-03-05 20:51:39 +00:00
fmd_parser.h_shipped cbfstool: Support new FMD flag "PRESERVE" 2019-03-05 20:51:39 +00:00
fmd_parser.y cbfstool: Support new FMD flag "PRESERVE" 2019-03-05 20:51:39 +00:00
fmd_scanner.c_shipped cbfstool: Support new FMD flag "PRESERVE" 2019-03-05 20:51:39 +00:00
fmd_scanner.h_shipped cbfstool: Support new FMD flag "PRESERVE" 2019-03-05 20:51:39 +00:00
fmd_scanner.l cbfstool: Support new FMD flag "PRESERVE" 2019-03-05 20:51:39 +00:00
fv.h
ifittool.c util/cbfstool: Remove unused assignment 2019-08-20 15:20:30 +00:00
ifwitool.c util/cbfstool: Fix typos 2020-01-30 13:01:00 +00:00
linux.h util/cbfstool: Fix typos 2018-08-28 14:20:15 +00:00
linux_trampoline.S linux_trampoline: use trampoline RAM for the GDT 2018-07-18 21:32:26 +00:00
linux_trampoline.c linux_trampoline: use trampoline RAM for the GDT 2018-07-18 21:32:26 +00:00
linux_trampoline.h
option.h
partitioned_file.c util/cbfstool: Close file on error 2019-07-10 18:21:00 +00:00
partitioned_file.h
rmodtool.c
rmodule.c util/cbfstool: Fix typos 2020-01-30 13:01:00 +00:00
rmodule.h util/cbfstool/rmodule.{c,h}: Fix typo and correct header 2018-11-22 14:58:38 +00:00
swab.h
xdr.c