UPGRADE YOUR BROWSER

We have detected your current browser version is not the latest one. Xilinx.com uses the latest web technologies to bring you the best online experience possible. Please upgrade to a Xilinx.com supported browser:Chrome, Firefox, Internet Explorer 11, Safari. Thank you!

AR# 72994

Design Advisory for Zynq UltraScale+ MPSoC/RFSoC - 2019.1 XilSKey: PPK Hash buffer overflow

描述

This Design Advisory covers an issues with the 2019.1 (and older) versions of the Zynq UltraScale+ MPSoC/RFSoC XilSKey library.

The XilSKey_EfusePs_ConvertBytesBeToLe() function call overflows the PPK Hash buffer (48 bytes) by 4 bytes.

This is a buffer overflow vulnerability.

For more information on how to sign up to receive notifications for new Design Advisories, see (Xilinx Answer 18683).

解决方案

A patch for the 2019.1 version is attached to this Answer Record

This issue has been addressed in the 2019.2 version of XilSKey.

附件

文件名 文件大小 File Type
AR72994_sdk_2019_1_preliminary_rev1.zip 501 KB ZIP
AR# 72994
日期 11/08/2019
状态 Active
Type 设计咨询
器件
Tools More Less
的页面