FAQs
English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

HAB vulnerability - IMX7D

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

HAB vulnerability - IMX7D

‎11-20-2018 02:31 AM
451 Views
hbeij
Contributor III

Dear NXP,

Regarding ERR010873 - Secure boot vulnerability when authenticating a certificate.

Does the IMX7 contain a new boot ROM which fixes this vulnerability? If so, which silicon revisions / markings?

Finally, all publicly available information only mentions that it is possible to bypass secure boot and to run "unauthorized, unsigned" images.


However, in case such an "unauthorized, unsigned" image is being run successfully, is the CPU still in Secure Mode or not? For instance, in this hacked u-boot, does "hab_status"

=> hab_status
Secure boot disabled

or this,

=> hab_status
Secure boot enabled
0 Kudos
Reply
1 Reply

‎11-21-2018 07:08 AM
329 Views
Yuri
NXP Employee
NXP Employee

Hello,

  Please create request \ ticket to discuss the issue in more details.

Support|NXP 

Regards,

Yuri.

0 Kudos
Reply