Buffer overflow in Rensas RCAR
Buffer overflow in "rcar_dev_init" due to using due to using untrusted data (rcar_image_number) as a loop counter before verifying it against RCAR_MAX_BL3X_IMAGE. This could lead to a full bypass of secure boot.
Affected products
- =<c9fb3558410032d2660c7f3b7d4b87dec09fe2f2
- =<c9fb3558410032d2660c7f3b7d4b87dec09fe2f2
Matching in nixpkgs
pkgs.armTrustedFirmwareQemu
Reference implementation of secure world software for ARMv8-A
-
nixos-unstable -
- nixpkgs-unstable 2.13.0
pkgs.armTrustedFirmwareS905
Reference implementation of secure world software for ARMv8-A
-
nixos-unstable -
- nixpkgs-unstable 2.13.0
pkgs.armTrustedFirmwareTools
Reference implementation of secure world software for ARMv8-A
-
nixos-unstable -
- nixpkgs-unstable 2.13.0
pkgs.armTrustedFirmwareRK3328
Reference implementation of secure world software for ARMv8-A
-
nixos-unstable -
- nixpkgs-unstable rk3328-2.13.0
pkgs.armTrustedFirmwareRK3399
Reference implementation of secure world software for ARMv8-A
-
nixos-unstable -
- nixpkgs-unstable rk3399-2.13.0
pkgs.armTrustedFirmwareRK3568
Reference implementation of secure world software for ARMv8-A
-
nixos-unstable -
- nixpkgs-unstable rk3568-2.13.0
pkgs.armTrustedFirmwareRK3588
Reference implementation of secure world software for ARMv8-A
-
nixos-unstable -
- nixpkgs-unstable rk3588-2.13.0
pkgs.armTrustedFirmwareAllwinner
Reference implementation of secure world software for ARMv8-A
-
nixos-unstable -
- nixpkgs-unstable sun50i_a64-2.13.0
pkgs.armTrustedFirmwareAllwinnerH6
Reference implementation of secure world software for ARMv8-A
-
nixos-unstable -
- nixpkgs-unstable sun50i_h6-2.13.0
pkgs.armTrustedFirmwareAllwinnerH616
Reference implementation of secure world software for ARMv8-A
-
nixos-unstable -
- nixpkgs-unstable sun50i_h616-2.13.0
Package maintainers
-
@lopsided98 Ben Wolsieffer <benwolsieffer@gmail.com>