Recently, NVIDIA released the safety of drive of a Linux to update a patch for Jetson TX1 chip, but the detail that did not provide question of this patch rehabilitate, nevertheless Zs of á of GifHub netizen Triszka Bal points out, NVIDIA passes this patch rehabilitate a serious and safe flaw, it is OK to say to pass this flaw in Tegra (graph farsighted) the random on chip implements baleful code.
This flaw name is SelfBlow, the Bootloader that is used at Tegra chip (the bootstrap before the system is started) , when program of Nvtboot-cpu of computer initialization to load, the address that this flaw can affect to load of test and verify is correct, aleatoric memory can be written, can make baleful code aleatoric carry out. SelfBlow flaw adopts this method, the protection that safety starts can be destroyed on any firmware version, the equipment of chip of foregone use Tegra is at present medium, only Nintendo Swtich can have escaped to rob, the bootstrap that uses because of it is different.
According to description of Zs of Triszka Bal á , he discovered this flaw on March 9 hind, referred NVIDIA instantly, plan to was made public on June 15. Although NVIDIA expresses to was met in May repair this flaw, but also did not file CVE order till July (number of general flaw library) , the time that this flaw place spends NVIDIA rehabilitate has exceeded occupation standard (90 days) . For the equipment security of the user, zs of Triszka Bal á chooses to public exposure this flaw, the hope can obtain NVIDIA to take seriously with this, but the description that there is SelfBlow in the safe newer announcement that NVIDIA issued on July 18, so Zs of Triszka Bal á thinks NVIDIA ignored the value of this flaw, published readme on Gifhub.
On July 19, NVIDIA announced a few detail of flaw and relevant influence and relevant CVE order in patch interface, discover to Zs of Triszka Bal á flaw thankses. The user of use Terga chip remembers installing safety of newer protection equipment in time, on the problem that hopes each manufacturer is handling user facilities security at the same time again a few more active.
