UEFI EDK1 Buffer Overflow Vulnerability (CVE-2014-8271)

UEFI EDK1 Buffer Overflow Vulnerability (CVE-2014-8271)

UEFI EDK1 Buffer Overflow Vulnerability (CVE-2014-8271)

Release date:
Updated on:

Affected Systems:
Insyde
Description:
CVE (CAN) ID: CVE-2014-8271

EDK1 is an open-source project that provides reference implementation for unified and extensible firmware interfaces (UEFI. Commercial UEFI incorporates some EDK1 source code.

Edk1/source/Sample/Universal/Variable/RuntimeDxe/FS/FSVariable. the implementation of the c source file has the buffer overflow vulnerability. UEFI uses multiple non-volatile variables to communicate between the operating system and firmware. These variables are stored in areas of file systems like SPI flash chips. The file system supports many operations. The buffer overflow vulnerability exists in the "reclaim" operation. CurrPtr can go beyond the valid boundary of the Variable Area and cause memory corruption. The impact of this vulnerability depends on whether the Code with the vulnerability is materialized sooner or later.

<* Source: Rafal Wojtczuk
Corey Kallenberg

Link: http://www.kb.cert.org/vuls/id/533140
*>

Suggestion:
Vendor patch:

Insyde
------
Refer:
Https://github.com/tianocore/edk/blob/master/Sample/Universal/Variable/RuntimeDxe/FS/FSVariable.c#L348-L352

This article permanently updates the link address: 36