173 matches found
CVE-2021-26347
Failure to validate the integer operand in ASP AMD Secure Processor bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential denial of service...
CVE-2021-26347
CVE-2021-26347 is referenced in several advisories as part of AMD/ kernel-firmware updates. The description states a failure to validate the integer operand in the AMD Secure Processor bootloader could allow an integer overflow in the L2 directory table in SPI flash, potentially causing a denial ...
CVE-2021-26347
Failure to validate the integer operand in ASP AMD Secure Processor bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential denial of service...
CVE-2021-46771
Insufficient validation of addresses in AMD Secure Processor ASP firmware system call may potentially lead to arbitrary code execution by a compromised user application...
CVE-2021-46771
Insufficient validation of addresses in AMD Secure Processor ASP firmware system call may potentially lead to arbitrary code execution by a compromised user application...
CVE-2021-46771
CVE-2021-46771 : The AMD Secure Processor (ASP) firmware system call has insufficient validation of addresses, potentially allowing arbitrary code execution by a compromised user application. This is tied to the ASP/firmware boundary and could impact systems relying on ASP for secure processing. ...
Release of Technical Report into the AMD Security Processor
Posted by James Forshaw, Google Project Zero Today, members of Project Zero and the Google Cloud security team are releasing a technical report on a security review of AMD Secure Processor ASP. The ASP is an isolated ARM processor in AMD EPYC CPUs that adds a root of trust and controls secure...
Mageia: Security Advisory (MGASA-2019-0207)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Input validation
Improper input and range checking in the AMD Secure Processor ASP boot loader image header may allow an attacker to use attacker-controlled values prior to signature validation potentially resulting in arbitrary code execution...
CVE-2021-26335
Improper input and range checking in the AMD Secure Processor ASP boot loader image header may allow an attacker to use attacker-controlled values prior to signature validation potentially resulting in arbitrary code execution...
AMD Secure Processor 输入验证错误漏洞
AMD Secure Processor ASP is a standalone ARM Coretex-A5 chip from AMD. An input validation error vulnerability exists in multiple AMD products that stems from incorrect input and range checking in the Platform Secure Processor PSP bootloader image header that could allow an attacker to use...
AMD Secure Processor输入验证错误漏洞
AMD Secure Processor ASP is a standalone ARM Coretex-A5 chip from AMD. An input validation error vulnerability exists in AMD Secure Processor, which stems from the ASP firmware's insufficient validation of the length of the BIOS image could lead to arbitrary code execution...
The vulnerability of the AMD Secure Processor technology in processors like Ryzen, Ryzen Pro, and Ryzen Mobile allows for writing to the secure area of the processor.
The vulnerability of the AMD Secure Processor-based processors, including Ryzen, Ryzen Pro, and Ryzen Mobile, is related to deficiencies in the implementation of security functions. Exploiting this vulnerability allows an attacker who has access to the targeted computer and possesses administrato...