Jan 2021 UPDATE: Serious Bug in ExAllocatePoolZero in WDK 2004

(see the following posts in this thread for updates)

We have discovered an issue with the new ExAllocatePoolZero function that appears in the WDK for Windows 2004. The bug also affects ExAllocatePoolQuotaZero, and ExAllocatePoolPriorityZero.

In short, using these functions will result in security vulnerabilities and crashes in drivers running on Windows 1909 (only… drivers running on earlier or later versions of Windows will not experience this issue).

Microsoft is aware of the issue.

For a complete description of the issue, as well as suggested actions and work-around, see our Developers Blog post.

We cannot emphasize strongly enough: Do not use these functions until you understand this bug.

Peter

1 Like

Good news!

Microsoft has issued a “security refresh” of the Windows 2004 WDK and EWDK that contains mitigations for these vulnerabilities. You should update your WDK/EWDK installation to the new version ASAP.

In addition, we have discovered that an update has been released for Windows 1909 that mitigates the original issue.

See our developer’s blog post for more information.

If you have any questions or comments… start a thread.