| Titel | RefindPlusRepo RefindPlus v0.14.2.AB Release NULL Pointer Dereference |
|---|
| Beschreibung | One potential NPD problem located in `Library/MemLogLib/BootLog.c#L168`, `static EFI_FILE_PROTOCOL * GetDebugLogFile (VOID)`
the main problem is that EfiLibOpenRoot may return NULL.
```c
mRootDir = EfiLibOpenRoot (LoadedImage->DeviceHandle); // it may return NULL
LogProtocol = OpenLogFile();
Status = REFIT_CALL_1_WRAPPER(mRootDir->Close, mRootDir); // if NULL, it will cause NPD
``` |
|---|
| Quelle | ⚠️ https://github.com/RefindPlusRepo/RefindPlus/issues/204 |
|---|
| Benutzer | micromilo (UID 84159) |
|---|
| Einreichung | 15.04.2025 09:40 (vor 1 Jahr) |
|---|
| Moderieren | 26.04.2025 10:39 (11 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 306338 [RefindPlusRepo RefindPlus 0.14.2.AB BootLog.c GetDebugLogFile Denial of Service] |
|---|
| Punkte | 20 |
|---|