URL:
<http://savannah.gnu.org/bugs/?45608>
Summary: Possible memory leak in grub-core/kern/efi/efi.c
Project: GNU GRUB
Submitted by: ignat
Submitted on: Thu 23 Jul 2015 14:50:41 GMT
Category: Security
Severity: Major
Priority: 5 - Normal
Item Group: Software Error
Status: None
Privacy: Public
Assigned to: None
Originator Name: Ignat Korchagin
Originator Email: [email protected]
Open/Closed: Open
Discussion Lock: Any
Release:
Release: Git master
Reproducibility: Every Time
Planned Release: None
_______________________________________________________
Details:
Functions grub_efi_get_variable and grub_efi_set_variable
(grub-core/kern/efi/efi.c) in some execution paths do not release local var16
buffer before returning after it was malloced.
_______________________________________________________
File Attachments:
-------------------------------------------------------
Date: Thu 23 Jul 2015 14:50:41 GMT Name: grub-leak.patch Size: 768B By:
ignat
<http://savannah.gnu.org/bugs/download.php?file_id=34492>
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/bugs/?45608>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/
_______________________________________________
Bug-grub mailing list
[email protected]
https://lists.gnu.org/mailman/listinfo/bug-grub
