mirror of
https://github.com/ARM-software/arm-trusted-firmware.git
synced 2026-07-02 13:52:40 +00:00
Treat FIP metadata as untrusted and add strict size/offset validation
for FIP header/ToC entries and payload reads. Also harden block/memmap/
mtd backends with overflow checks, length guards, and short-read errors
to prevent out-of-bounds access during BL1/BL2 image loading.
Change-Id: I82b702f2740c3213ee94a572f129941e270d1aaa
Signed-off-by: Manish V Badarkhe <Manish.Badarkhe@arm.com>
(cherry picked from commit 38110f9606)