On Thu, Jun 04, 2026 at 11:39:50AM +0100, Anton Ivanov wrote: > fit_image_get_data() uses the data-position, data-offset, and > data-size FIT properties without bounds checking. A crafted FIT > image can specify values that cause out-of-bounds read during > signature verification of an untrusted FIT. > > Validate that the external data offset and size are non-negative, > and that the data region fits within the FIT image bounds. > > Signed-off-by: Anton Ivanov <[email protected]> > Reviewed-by: Simon Glass <[email protected]>
Applied to u-boot/next, thanks! -- Tom
signature.asc
Description: PGP signature
