TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / sandbox / pfalcon / trusted-firmware-a / 10d7389753566c8db7558cac86b41784a178de5a^! / . / docs / process
commit10d7389753566c8db7558cac86b41784a178de5a[log] [tgz]
authorManish Pandey <manish.pandey2@arm.com>Tue Jan 02 15:35:28 2024 +0000
committerYann Gautier <yann.gautier@st.com>Wed Jan 24 11:26:07 2024 +0100
tree6d1c781f9ce270c179777879da2c61b8c67dbac5
parent7185d051bc2e47d5639d489b14f17dcd698ee284 [diff]
docs(security): security advisory for CVE-2023-49100

Reported-by: Christian Lindenmeier <christian.lindenmeier@fau.de>
Signed-off-by: Manish Pandey <manish.pandey2@arm.com>
Change-Id: I13fa93a65e5017dae6c837e88cd80bda72d4c2a3
(cherry picked from commit d1eb4e2377c8811db2402e439c302d48a933a207)

diff --git a/docs/process/security.rst b/docs/process/security.rst
index 2b6422e..dabaa7f 100644
--- a/docs/process/security.rst
+++ b/docs/process/security.rst

@@ -75,6 +75,8 @@
 |  |TFV-10| | Incorrect validation of X.509 certificate extensions can result  |
 |           | in an out-of-bounds read                                         |
 +-----------+------------------------------------------------------------------+
+|  |TFV-11| |  A Malformed SDEI SMC can cause out of bound memory read         |
++-----------+------------------------------------------------------------------+
 
 .. _issue tracker: https://developer.trustedfirmware.org/project/board/1/
 .. _mailing list: https://lists.trustedfirmware.org/mailman3/lists/tf-a.lists.trustedfirmware.org/
@@ -89,6 +91,7 @@
 .. |TFV-8| replace:: :ref:`Advisory TFV-8 (CVE-2018-19440)`
 .. |TFV-9| replace:: :ref:`Advisory TFV-9 (CVE-2022-23960)`
 .. |TFV-10| replace:: :ref:`Advisory TFV-10 (CVE-2022-47630)`
+.. |TFV-11| replace:: :ref:`Advisory TFV-11 (CVE-2023-49100)`
 
 .. _TrustedFirmware.org security incident process: https://developer.trustedfirmware.org/w/collaboration/security_center/