Security: OP-TEE/optee_os
Security
No security policy detected
This project has not set up a SECURITY.md file yet.
Report a vulnerability-
ECDH private key recoveryGHSA-g6qf-hwf7-mg9h published
Jun 3, 2026 by jenswiklModerate -
Subkey rollback protection can be bypassed with older subkey versionsGHSA-fhcg-pp56-8v75 published
Jun 30, 2026 by jenswiklModerate -
Missing OPTEE_MSG_ATTR_TYPE_MASK in cleanup_shm_refs() leaks mobj referencesGHSA-c7j8-fgqw-rcgp published
Jun 24, 2026 by jenswiklLow -
SHA-3 accelerated finalize heap overflowGHSA-75x4-j8p9-55qv published
Jun 15, 2026 by jenswiklModerate -
Hisilicon HPRE PKCS#1 v1.5 Decryption Padding OracleGHSA-wxp6-8wwr-h4gf published
Jun 18, 2026 by jenswiklLow -
RSA-OAEP padding oracle in NXP CAAM driver enables plaintext recoveryGHSA-5q45-58r5-cq4g published
Jun 18, 2026 by jenswiklLow -
RSA-OAEP padding oracle in Hisilicon HPRE driver enables plaintext recoveryGHSA-qw4r-9wj9-q23r published
Jun 18, 2026 by jenswiklLow -
AES-GCM 32-bit integer overflow in length counters breaks authentication guaranteeGHSA-fcm8-vjhf-6vqh published
Jun 8, 2026 by jenswiklLow -
PKCS#11 unbounded recursion in sanitize_client_object()GHSA-wh38-23ff-grff published
Jun 26, 2026 by jenswiklLow -
FF-A type confusion in SPMC tmem path causes S-EL1 kernel panicGHSA-86pj-8xgw-66p5 published
May 25, 2026 by jenswiklModerate
Learn more about advisories related to OP-TEE/optee_os in the GitHub Advisory Database