CVE-2021-28216 - log back

CVE-2021-28216 edited at 29 Nov 2021 12:09:05
Description
- A security issue has been found in edk2. In the function FpdtStatusCodeListenerPei(), the pointer BootPerformanceTable is read directly from an NVRAM variable ("FirmwarePerformance"). Memory is then updated at that address. A local attacker may modify the variable at his will, and after reboot the vulnerable code will update memory at the attacker-supplied address.
+ A security issue has been found in edk2 before version 202111. In the function FpdtStatusCodeListenerPei(), the pointer BootPerformanceTable is read directly from an NVRAM variable ("FirmwarePerformance"). Memory is then updated at that address. A local attacker may modify the variable at his will, and after reboot the vulnerable code will update memory at the attacker-supplied address.
References
https://bugzilla.tianocore.org/show_bug.cgi?id=2957
+ https://edk2.groups.io/g/devel/message/81743
+ https://github.com/tianocore/edk2/commit/466ebdd2e0919c1538d03cd59833704bd5e1c028
CVE-2021-28216 edited at 11 Aug 2021 21:37:59
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Insufficient validation
Description
+ A security issue has been found in edk2. In the function FpdtStatusCodeListenerPei(), the pointer BootPerformanceTable is read directly from an NVRAM variable ("FirmwarePerformance"). Memory is then updated at that address. A local attacker may modify the variable at his will, and after reboot the vulnerable code will update memory at the attacker-supplied address.
References
+ https://bugzilla.tianocore.org/show_bug.cgi?id=2957
CVE-2021-28216 created at 11 Aug 2021 21:36:10
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes