HAB vulnerability - IMX7D

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

HAB vulnerability - IMX7D

599 Views
hbeij
Contributor III

Dear NXP,

Regarding ERR010873 - Secure boot vulnerability when authenticating a certificate.

Does the IMX7 contain a new boot ROM which fixes this vulnerability? If so, which silicon revisions / markings?

Finally, all publicly available information only mentions that it is possible to bypass secure boot and to run "unauthorized, unsigned" images.


However, in case such an "unauthorized, unsigned" image is being run successfully, is the CPU still in Secure Mode or not? For instance, in this hacked u-boot, does "hab_status"

=> hab_status
Secure boot disabled

or this,

=> hab_status
Secure boot enabled
0 Kudos
Reply
1 Reply

477 Views
Yuri
NXP Employee
NXP Employee

Hello,

  Please create request \ ticket to discuss the issue in more details.

Support|NXP 

Regards,

Yuri.

0 Kudos
Reply