From mboxrd@z Thu Jan 1 00:00:00 1970 From: Matt Fleming Subject: [GIT PULL] EFI urgent fix Date: Mon, 25 Apr 2016 12:26:41 +0100 Message-ID: <1461583602-31599-1-git-send-email-matt@codeblueprint.co.uk> Return-path: Sender: linux-efi-owner-u79uwXL29TY76Z2rM5mHXA@public.gmane.org To: Ingo Molnar , Thomas Gleixner , "H . Peter Anvin" Cc: Matt Fleming , Ard Biesheuvel , linux-kernel-u79uwXL29TY76Z2rM5mHXA@public.gmane.org, linux-efi-u79uwXL29TY76Z2rM5mHXA@public.gmane.org, Chris Wilson , Jani Nikula , Jason Andryuk , Laszlo Ersek , Matthew Garrett , Peter Jones List-Id: linux-efi@vger.kernel.org Folks, please pull the following fix from Laszlo that ensures we don't perform an out-of-bounds access when matching EFI variable names against the variable protection whitelist. The following changes since commit c3b46c73264b03000d1e18b22f5caf63332547c9: Linux 4.6-rc4 (2016-04-17 19:13:32 -0700) are available in the git repository at: git://git.kernel.org/pub/scm/linux/kernel/git/mfleming/efi.git tags/efi-urgent for you to fetch changes up to 630ba0cc7a6dbafbdee43795617c872b35cde1b4: efi: Fix out-of-bounds read in variable_matches() (2016-04-22 19:41:41 +0100) ---------------------------------------------------------------- * Avoid out-of-bounds access in the efivars code when performing string matching on converted EFI variable names - Laszlo Ersek ---------------------------------------------------------------- Laszlo Ersek (1): efi: Fix out-of-bounds read in variable_matches() drivers/firmware/efi/vars.c | 37 ++++++++++++++++++++++++++----------- 1 file changed, 26 insertions(+), 11 deletions(-)