From commit message at $URL:
The DxeImageVerificationHandler() function currently checks whether
"SecDataDir" has enough room for "WinCertificate->dwLength". However, for
advancing "OffSet", "WinCertificate->dwLength" is aligned to the next
multiple of 8. If "WinCertificate->dwLength" is large enough, the
alignment will return 0, and "OffSet" will be stuck at the same value.
Patch is at $URL, and seems there's been a tag since that commit.
The bug has been referenced in the following commit(s):
Author: Vadim Misbakh-Soloviov <email@example.com>
AuthorDate: 2020-10-02 10:37:58 +0000
Commit: Vadim Misbakh-Soloviov <firstname.lastname@example.org>
CommitDate: 2020-10-02 10:37:58 +0000
Package-Manager: Portage-3.0.6, Repoman-3.0.1
Signed-off-by: Vadim Misbakh-Soloviov <email@example.com>
sys-firmware/edk2-ovmf/Manifest | 5 +
sys-firmware/edk2-ovmf/edk2-ovmf-201905.ebuild | 3 +
sys-firmware/edk2-ovmf/edk2-ovmf-202008.ebuild | 184 +++++++++++++++++++++++++
3 files changed, 192 insertions(+)
Now we'll wait for stabilization of 202008 before closing this bug
Ok, please do so when ready.
Maintainer(s), please cleanup.
Security, please vote.
GLSA Vote: No