aboutsummaryrefslogtreecommitdiff

Security Handling

Security Disclosures

We disclose all security vulnerabilities we find, or are advised about, that are relevant to Trusted Firmware-A. We encourage responsible disclosure of vulnerabilities and inform users as best we can about all possible issues.

We disclose TF-A vulnerabilities as Security Advisories, all of which are listed at the bottom of this page. Any new ones will, additionally, be announced as issues in the project's issue tracker with the security-advisory tag. You can receive notification emails for these by watching the "Trusted Firmware-A" project at https://developer.trustedfirmware.org/.

Found a Security Issue?

Although we try to keep TF-A secure, we can only do so with the help of the community of developers and security researchers.

If you think you have found a security vulnerability, please do not report it in the issue tracker. Instead, please follow the TrustedFirmware.org security incident process. One of the goals of this process is to ensure providers of products that use TF-A have a chance to consider the implications of the vulnerability and its remedy before it is made public. As such, please follow the disclosure plan outlined in the process. We do our best to respond and fix any issues quickly.

Afterwards, we encourage you to write-up your findings about the TF-A source code.

Attribution

We will name and thank you in the :ref:`Change Log & Release Notes` distributed with the source code and in any published security advisory.

System Message: ERROR/3 (<stdin>, line 37); backlink

Unknown interpreted text role "ref".

Security Advisories

ID Title
|TFV-1| Malformed Firmware Update SMC can result in copy of unexpectedly large data into secure memory
|TFV-2| Enabled secure self-hosted invasive debug interface can allow normal world to panic secure world
|TFV-3| RO memory is always executable at AArch64 Secure EL1
|TFV-4| Malformed Firmware Update SMC can result in copy or authentication of unexpected data in secure memory in AArch32 state
|TFV-5| Not initializing or saving/restoring PMCR_EL0 can leak secure world timing information
|TFV-6| Trusted Firmware-A exposure to speculative processor vulnerabilities using cache timing side-channels
|TFV-7| Trusted Firmware-A exposure to cache speculation vulnerability Variant 4
|TFV-8| Not saving x0 to x3 registers can leak information from one Normal World SMC client to another

System Message: ERROR/3 (<stdin>, line 73)

Unknown interpreted text role "ref".

System Message: ERROR/3 (<stdin>, line 73)

Substitution definition contains illegal element:

<problematic ids="id4" refid="id3">
    :ref:`Advisory TFV-1 (CVE-2016-10319)`
.. |TFV-1| replace:: :ref:`Advisory TFV-1 (CVE-2016-10319)`

System Message: ERROR/3 (<stdin>, line 74)

Unknown interpreted text role "ref".

System Message: ERROR/3 (<stdin>, line 74)

Substitution definition contains illegal element:

<problematic ids="id6" refid="id5">
    :ref:`Advisory TFV-2 (CVE-2017-7564)`
.. |TFV-2| replace:: :ref:`Advisory TFV-2 (CVE-2017-7564)`

System Message: ERROR/3 (<stdin>, line 75)

Unknown interpreted text role "ref".

System Message: ERROR/3 (<stdin>, line 75)

Substitution definition contains illegal element:

<problematic ids="id8" refid="id7">
    :ref:`Advisory TFV-3 (CVE-2017-7563)`
.. |TFV-3| replace:: :ref:`Advisory TFV-3 (CVE-2017-7563)`

System Message: ERROR/3 (<stdin>, line 76)

Unknown interpreted text role "ref".

System Message: ERROR/3 (<stdin>, line 76)

Substitution definition contains illegal element:

<problematic ids="id10" refid="id9">
    :ref:`Advisory TFV-4 (CVE-2017-9607)`
.. |TFV-4| replace:: :ref:`Advisory TFV-4 (CVE-2017-9607)`

System Message: ERROR/3 (<stdin>, line 77)

Unknown interpreted text role "ref".

System Message: ERROR/3 (<stdin>, line 77)

Substitution definition contains illegal element:

<problematic ids="id12" refid="id11">
    :ref:`Advisory TFV-5 (CVE-2017-15031)`
.. |TFV-5| replace:: :ref:`Advisory TFV-5 (CVE-2017-15031)`

System Message: ERROR/3 (<stdin>, line 78)

Unknown interpreted text role "ref".

System Message: ERROR/3 (<stdin>, line 78)

Substitution definition contains illegal element:

<problematic ids="id14" refid="id13">
    :ref:`Advisory TFV-6 (CVE-2017-5753, CVE-2017-5715, CVE-2017-5754)`
.. |TFV-6| replace:: :ref:`Advisory TFV-6 (CVE-2017-5753, CVE-2017-5715, CVE-2017-5754)`

System Message: ERROR/3 (<stdin>, line 79)

Unknown interpreted text role "ref".

System Message: ERROR/3 (<stdin>, line 79)

Substitution definition contains illegal element:

<problematic ids="id16" refid="id15">
    :ref:`Advisory TFV-7 (CVE-2018-3639)`
.. |TFV-7| replace:: :ref:`Advisory TFV-7 (CVE-2018-3639)`

System Message: ERROR/3 (<stdin>, line 80)

Unknown interpreted text role "ref".

System Message: ERROR/3 (<stdin>, line 80)

Substitution definition contains illegal element:

<problematic ids="id18" refid="id17">
    :ref:`Advisory TFV-8 (CVE-2018-19440)`
.. |TFV-8| replace:: :ref:`Advisory TFV-8 (CVE-2018-19440)`


Copyright (c) 2019-2020, Arm Limited. All rights reserved.

Docutils System Messages

System Message: ERROR/3 (<stdin>, line 46); backlink

Undefined substitution referenced: "TFV-1".

System Message: ERROR/3 (<stdin>, line 49); backlink

Undefined substitution referenced: "TFV-2".

System Message: ERROR/3 (<stdin>, line 52); backlink

Undefined substitution referenced: "TFV-3".

System Message: ERROR/3 (<stdin>, line 54); backlink

Undefined substitution referenced: "TFV-4".

System Message: ERROR/3 (<stdin>, line 58); backlink

Undefined substitution referenced: "TFV-5".

System Message: ERROR/3 (<stdin>, line 61); backlink

Undefined substitution referenced: "TFV-6".

System Message: ERROR/3 (<stdin>, line 64); backlink

Undefined substitution referenced: "TFV-7".

System Message: ERROR/3 (<stdin>, line 67); backlink

Undefined substitution referenced: "TFV-8".