CVE-2021-34382

Severity CVSS v4.0:
Pending analysis
Type:
CWE-190 Integer Overflow or Wraparound
Publication date:
30/06/2021
Last modified:
07/11/2023

Description

Trusty TLK contains a vulnerability in the NVIDIA TLK kernel’s tz_map_shared_mem function where an integer overflow on the size parameter causes the request buffer and the logging buffer to overflow, allowing writes to arbitrary addresses within the kernel.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:nvidia:jetson_linux:*:*:*:*:*:*:*:* 32.5.1 (excluding)
cpe:2.3:h:nvidia:jetson_tx1:-:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools