CVE-2021-34389

Summary

Trusty contains a vulnerability in NVIDIA OTE protocol message parsing code, which is present in all the TAs. An incorrect bounds check can allow a local user through a malicious client to access memory from the heap in the TrustZone, which may lead to information disclosure.

Affected Software

VendorProductVersion RangeStatus
NVIDIANVIDIA Jetson, TX2 series, TX2 NX, AGX Xavier series, Xavier NXAll Jetson Linux versions prior to r32.5.1affected

Weaknesses

  • information disclosure

ADP Enrichment

CVE Program Container

Additional References

References