TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / TF-A / trusted-firmware-a / 878464f02a043207f29282f05109012152df569b
commit878464f02a043207f29282f05109012152df569b[log] [tgz]
authorSona Mathew <sonarebecca.mathew@arm.com>Tue May 21 14:08:56 2024 -0500
committerSona Mathew <sonarebecca.mathew@arm.com>Tue Dec 17 10:27:57 2024 -0600
tree08223cb21b5cc6174e0e7628c8cdd7f173c9fbf8
parentb0d441bdadae3b38e3a670e03341603785b39f3c [diff]
fix(cpus): workaround for CVE-2024-5660 for Neoverse-V2

Implements mitigation for CVE-2024-5660 that affects Neoverse-V2
revisions r0p0, r0p1, r0p2.
The workaround is to disable the hardware page aggregation at
EL3 by setting CPUECTLR_EL1[46] = 1'b1.

Public Documentation:
https://developer.arm.com/Arm%20Security%20Center/Arm%20CPU%20Vulnerability%20CVE-2024-5660

Change-Id: If66687add52d16f68ce54fe5433dd3b3f067ee04
Signed-off-by: Sona Mathew <sonarebecca.mathew@arm.com>
1 file changed
tree: 08223cb21b5cc6174e0e7628c8cdd7f173c9fbf8
  1. .husky/
  2. bl1/
  3. bl2/
  4. bl2u/
  5. bl31/
  6. bl32/
  7. common/
  8. docs/
  9. drivers/
  10. fdts/
  11. include/
  12. lib/
  13. licenses/
  14. make_helpers/
  15. plat/
  16. services/
  17. tools/
  18. .checkpatch.conf
  19. .commitlintrc.js
  20. .ctags
  21. .cz-adapter.cjs
  22. .cz.json
  23. .editorconfig
  24. .gitignore
  25. .gitreview
  26. .nvmrc
  27. .readthedocs.yaml
  28. .versionrc.cjs
  29. changelog.yaml
  30. dco.txt
  31. license.rst
  32. Makefile
  33. package-lock.json
  34. package.json
  35. poetry.lock
  36. pyproject.toml
  37. readme.rst