12. Integer/Buffer Overflow in TpmDxe Driver
MeasureVariable function calculated the sum of many fields. This could lead to an integer overflow that resulted in a small allocation of memory and a large copy.
This is addressed by EDK2 SVN https://sourceforge.net/p/edk2/code/14396.
Reported by the Advanced Threat Research Team at Intel Security.