12. Integer/Buffer Overflow in TpmDxe Driver
The
MeasureVariable
function calculated the sum of many fields. This could lead to an integer overflow that resulted in a small allocation of memory and a large copy.Reported by the Advanced Threat Research Team at Intel Security.