Security Overview · OP-TEE/optee_os · GitHub

Security

No security policy detected

This project has not set up a SECURITY.md file yet.

Report a vulnerability

REE userspace code can panic TAs, leading to fTPM PCR reset and data disclosure
GHSA-f35r-hm2m-p6c3 published Jul 4, 2025 by jforissier

High
PKCS#11: DB PIN counter reset attack
GHSA-2f5m-q4w3-865p published Feb 2, 2024 by jockebech

Low
Double free in shdr_verify_signature
GHSA-jrw7-63cq-7vhm published Sep 13, 2023 by jockebech

High
Improper Validation of Array Index in the cleanup_shm_refs function
GHSA-65w8-6mrg-52g7 published Nov 29, 2022 by jockebech

High
Bypass signature verification on Raspberry Pi3 using a glitch attack
GHSA-r64m-h886-hw6g published Nov 24, 2022 by jockebech

Low
TrustZone bypass at wake up with default CSU configuration on NXP i.MX6UL
GHSA-4pqr-q8rf-8464 published Nov 23, 2021 by ruchi393

Moderate
RPC alloc could allocate smaller shared memory than requested
GHSA-5fhv-xcxv-8v5x published Jan 11, 2022 by ruchi393

Moderate
Broadcom elog PTA - firmware loading issue
GHSA-hhrc-h9xj-hppv published Nov 10, 2021 by ruchi393

Low
Clarification to default CSU configuration state on some i.MX devices
GHSA-6q85-3ph3-rm47 published Jul 12, 2021 by ruchi393

Low
Paged TAs mapping issue
GHSA-5p5v-7hh8-6rfw published May 10, 2021 by jockebech

Moderate

Learn more about advisories related to OP-TEE/optee_os in the GitHub Advisory Database