begriffs open source - cmsis/commit

]> begriffs open source - cmsis/commit

begriffs.com / projects / cmsis / commit

author	Robert Rostohar <Robert.Rostohar@arm.com>
	Wed, 5 May 2021 12:09:29 +0000 (14:09 +0200)
committer	Robert Rostohar <Robert.Rostohar@arm.com>
	Wed, 5 May 2021 12:09:29 +0000 (14:09 +0200)
commit	8b3ccd623ab01b63137d09f189f1fe3bd575bf9b
tree	5ac76f600aee3575468447d4d770d1eaa159b0ab	tree \| snapshot
parent	60d5b57d703b407c17c77f5e9832737331ad54be	commit \| diff

RTX5: CVE-2021-27431 vulnerability mitigation

Reported vulnerability:
integer wrap-around in osRtxMemoryAlloc function (parameter 'size')

osRtxMemoryAlloc is an internal RTX function and is not intended to be
called directly by the user. It is also not exposed as public API.

Internal usage of osRtxMemoryAlloc ensures that ‘size’ is never
a large value (>=0xFFFFFFF8U) that would lead to wrap-around.

ARM.CMSIS.pdsc		diff \| blob \| history
CMSIS/DoxyGen/RTOS2/src/history.txt		diff \| blob \| history

https://github.com/ARM-software/CMSIS_6.git

RSS Atom