PPFL icon indicating copy to clipboard operation
PPFL copied to clipboard
verified publisher icon mofanv

add: check conditions before input array access

Open TEE-Rep opened this issue 1 year ago • 0 comments

I found there are some directly array access without buffer size check in darknet_ta.c. Since params[i].memref is from insecure REE, there may be a secure risk that the input buffer size may less than TEE code needed. I add a check condition before array access to avoid this issue. Please kindly accept the pull request.

TEE-Rep avatar Apr 25 '25 08:04 TEE-Rep