Repository for CVE-2019-6260 test tool
Andrew Jeffery
andrew at aj.id.au
Thu Feb 21 13:42:33 AEDT 2019
Hi Brad,
We're looking to publish a tool for testing the state of the bridges outlined in CVE-2019-6260. The initial release of the tool can only be run on the BMC, using /dev/mem as a backend to test the bits. Thus users will already need to authenticate as root to the BMC to inspect whether the system is vulnerable and the tool is _not_ a PoC demonstrating how to use the bridges.
Can you please create a cve-2019-6260 repository under the OpenBMC github organisation to host the tool?
Cheers,
Andrew
More information about the openbmc
mailing list