git.openpandora.org / pandora-u-boot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 124c255) | patch
image: Check for unit addresses in FITs
authorSimon Glass <sjg@chromium.org>
Tue, 16 Feb 2021 00:08:12 +0000 (17:08 -0700)
committerTom Rini <trini@konsulko.com>
Tue, 16 Feb 2021 03:31:54 +0000 (22:31 -0500)
commit3f04db891a353f4b127ed57279279f851c6b4917
tree2de8580b23f833e100a186448625721d71625521tree | snapshot
parent124c255731c76a2b09587378b2bcce561bcd3f2dcommit | diff
image: Check for unit addresses in FITs

Using unit addresses in a FIT is a security risk. Add a check for this
and disallow it.

CVE-2021-27138

Signed-off-by: Simon Glass <sjg@chromium.org>
Reported-by: Bruce Monroe <bruce.monroe@intel.com>
Reported-by: Arie Haenel <arie.haenel@intel.com>
Reported-by: Julien Lenoir <julien.lenoir@intel.com>
common/image-fit.c diff | blob | history
test/py/tests/test_vboot.py diff | blob | history
Pandora U-Boot Repository