CMSE secure state may leak from stack to floating-point registers

When using Arm Cortex-M Security Extensions (CMSE), Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non-secure function call is made that returns a floating-point value and when this is the first use of floating-point since entering Secure state. This allows an attacker to read a limited quantity of Secure stack contents with an impact on confidentiality. This issue is specific to code generated using LLVM-based compilers.

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

在释放前未清除敏感信息

ARM Compiler 安全漏洞

ARM Compiler是英国ARM公司的一个用于编译生成ARM架构应用的工具。 ARM Compiler 6.6版本至6.22版本存在安全漏洞，该漏洞源于如果执行了安全到非安全函数调用并返回浮点值，并且这是进入安全状态以来首次使用浮点，则安全堆栈内容可能会通过浮点寄存器泄露到非安全状态，这允许攻击者读取有限数量的安全堆栈内容，从而影响机密性。

N/A

N/A