CVE-2017-9607

Name of the Vulnerable Software and Affected Versions ARM Trusted Firmware versions prior to 1.4

Description The issue allows attackers to write arbitrary data to secure memory, bypass the bl1 plat mem check protection mechanism, cause a denial of service, or possibly have unspecified other impact via a crafted AArch32 image, which triggers an integer overflow.

Recommendations For versions prior to 1.4, update to version 1.4 or later to resolve the issue. As a temporary workaround, consider restricting access to secure memory to minimize the risk of exploitation.