CVE-2021-34372

Name of the Vulnerable Software and Affected Versions: Trusty (the trusted OS produced by NVIDIA for Jetson devices) (affected versions not specified)

Description: The issue is related to a vulnerability in the NVIDIA OTE protocol message parsing code, where an integer overflow in a malloc() size calculation leads to a buffer overflow on the heap. This might result in information disclosure, escalation of privileges, and denial of service.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.