2 matches found
Samsung OTP OTP_GET_CRYPTO_DERIVED_KEY Buffer Overflow Vulnerability
Stack buffer overflow and information disclosure vulnerabilities exist in the Samsung OTP TrustZone trustlet via OTPGETCRYPTODERIVEDKEY. Stack buffer overflow and information disclosure in OTP TrustZone trustlet via OTPGETCRYPTODERIVEDKEY As a part of the KNOX extensions available on Samsung...
Samsung Devices KNOX Extensions OTP TrustZone Trustlet Stack Buffer Overflow
/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=938 As a part of the KNOX extensions available on Samsung devices, Samsung provides a TrustZone trustlet which allows the generation of OTP tokens. The tokens themselves are generated in a TrustZone application within the TEE UID...