When calling syscall_cipher_init there were no check being done that the state coming from the TA has been initialized to a valid cipher state, this could trigger an assert that eventually code be a way to make an attack on TEE core.
Patches
optee_os.git
- cryp: ensure that mode is cipher in syscall_cipher_init (28aa35f)
Workarounds
N/A
References
N/A
OP-TEE ID
OP-TEE-2019-0020
Reported by
Riscure
For more information
For more information regarding the security incident process in OP-TEE, please read the information that can be found when going to the "Security" page at https://www.trustedfirmware.org.
When calling
syscall_cipher_initthere were no check being done that the state coming from the TA has been initialized to a valid cipher state, this could trigger an assert that eventually code be a way to make an attack on TEE core.Patches
optee_os.git
Workarounds
N/A
References
N/A
OP-TEE ID
OP-TEE-2019-0020
Reported by
Riscure
For more information
For more information regarding the security incident process in OP-TEE, please read the information that can be found when going to the "Security" page at https://www.trustedfirmware.org.