Merge branch '2021-02-15-fix-CVE-2021-27097-CVE-2021-27138'

Fix CVE-2021-27097 and CVE-2021-27138. For more details see http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27097 and http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27138
author: Tom Rini <trini@konsulko.com> 2021-02-15 19:19:56 -0500
committer: Tom Rini <trini@konsulko.com> 2021-02-15 22:31:54 -0500
commit: b6f4c757959f8850e1299a77c8e5713da78e8ec0 (patch)
tree: 2de8580b23f833e100a186448625721d71625521 /cmd/bootefi.c
parent: 6144438fb5c9059dc87cf219bed0c992f70b3509 (diff)
parent: 3f04db891a353f4b127ed57279279f851c6b4917 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/cmd/bootefi.c b/cmd/bootefi.c
index 1583a96be14..271b385edea 100644
--- a/cmd/bootefi.c
+++ b/cmd/bootefi.c
@@ -73,7 +73,7 @@ void efi_set_bootdev(const char *dev, const char *devnr, const char *path,
 	/* Remember only PE-COFF and FIT images */
 	if (efi_check_pe(buffer, buffer_size, NULL) != EFI_SUCCESS) {
 #ifdef CONFIG_FIT
-		if (!fit_check_format(buffer))
+		if (fit_check_format(buffer, IMAGE_SIZE_INVAL))
 			return;
 		/*
 		 * FIT images of type EFI_OS are started via command bootm.
author	Tom Rini <trini@konsulko.com>	2021-02-15 19:19:56 -0500
committer	Tom Rini <trini@konsulko.com>	2021-02-15 22:31:54 -0500
commit	b6f4c757959f8850e1299a77c8e5713da78e8ec0 (patch)
tree	2de8580b23f833e100a186448625721d71625521 /cmd/bootefi.c
parent	6144438fb5c9059dc87cf219bed0c992f70b3509 (diff)
parent	3f04db891a353f4b127ed57279279f851c6b4917 (diff)