RSS   Vulnerabilities for 'Arm trusted firmware'   RSS

2017-06-07
 
CVE-2017-7564

 

 
In ARM Trusted Firmware through 1.3, the secure self-hosted invasive debug interface allows normal world attackers to cause a denial of service (secure world panic) via vectors involving debug exceptions and debug registers.

 
 
CVE-2017-7563

CWE-732
 

 
In ARM Trusted Firmware 1.3, RO memory is always executable at AArch64 Secure EL1, allowing attackers to bypass the MT_EXECUTE_NEVER protection mechanism. This issue occurs because of inconsistency in the number of execute-never bits (one bit versus two bits).

 

 >>> Vendor: ARM 16 Products
Mbed tls
Arm trusted firmware
Arm-trusted-firmware
Cortex-a
Cortex-r
Trusted firmware-a
Mbed crypto
Mbed os
Arm compiler
Trusted firmware-m
Cortex-a72
Bifrost gpu kernel driver
Midguard gpu kernel driver
Valhall gpu kernel driver
Adaptive scalable texture compression encoder
Astc encoder


Copyright 2024, cxsecurity.com

 

Back to Top