Impact
A local attacker able to interfere with the physical SPI bus between the Host and target SoC may send a malformed SPI response that will corrupt kernel's memory in the Host MCU, thus potentially achieving local code execution with kernel privileges.
Patches
This has been fixed in:
For more information
If you have any questions or comments about this advisory:
embargo: 2020-10-07
zepsec: ZEPSEC-91
thanks: Ruben Santamarta, IOActive
Impact
A local attacker able to interfere with the physical SPI bus between the Host and target SoC may send a malformed SPI response that will corrupt kernel's memory in the Host MCU, thus potentially achieving local code execution with kernel privileges.
Patches
This has been fixed in:
For more information
If you have any questions or comments about this advisory:
embargo: 2020-10-07
zepsec: ZEPSEC-91
thanks: Ruben Santamarta, IOActive