摘要:
Buffer overflow in rcar_dev_init due to using due to using untrusted data (rcar_image_number) as a loop counter before verifying it against RCAR_MAX_BL3X_IMAGE. This could lead to a full bypass of secure boot.
安全等级: Low
公告ID: KylinSec-SA-2024-3112
发布日期: 2024年7月12日
关联CVE: CVE-2024-6564
Buffer overflow in rcar_dev_init due to using due to using untrusted data (rcar_image_number) as a loop counter before verifying it against RCAR_MAX_BL3X_IMAGE. This could lead to a full bypass of secure boot.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2024-6564 | KY3.4-5A | arm-trusted-firmware | Unaffected |
