CVE-2023-49100: 
Linux Debian vulnerability analysis and mitigation

CVE-2023-49100 affects Trusted Firmware-A (TF-A) versions before 2.10. The vulnerability is a potential read out-of-bounds issue in the SDEI (Software Delegated Exception Interface) service. The vulnerability was discovered in the sdei_interrupt_bind function where the input parameter passed in register x1 is not validated sufficiently (TF-A Advisory).

The vulnerability exists in the function sdei_interrupt_bind where the parameter is passed to a call to plat_ic_get_interrupt_type. The parameter can be any arbitrary value that passes checks in the function plat_ic_is_sgi. A compromised Normal World (Linux kernel) can enable a root-privileged attacker to issue arbitrary SMC calls. Using this primitive, the attacker can control the content of registers x0 through x6, which are used to send parameters to TF-A (NVD). The vulnerability has been assigned a CVSS v3.1 Base Score of 4.4 MEDIUM (AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H) (NVD).

Out-of-bounds addresses can be read in the context of TF-A (EL3). While the read value is never returned to non-secure memory or registers, preventing information leakage, an attacker can still crash TF-A (NVD).

The vulnerability has been fixed in TF-A version 2.10. Users should upgrade to this version or later to mitigate the issue (NVD).