9. Integer/Heap Overflow in SetVariable

Description:

Incorrect input handling in VariableServiceSetVariable could lead to a buffer overflow.

Recommendation:

This issue is addressed by EDK2 SVN https://sourceforge.net/p/edk2/code/14305.

Acknowledgments:

Reported by the Advanced Threat Research team at Intel Security.