38 min listen
Supply Chain Security - Ivan Arce - PSW #781
Supply Chain Security - Ivan Arce - PSW #781
ratings:
Length:
58 minutes
Released:
Apr 20, 2023
Format:
Podcast episode
Description
We will talk about Supply chain security, the TPM 2.0 vulnerabilities recently discovered by a Quarkslab researcher, bugs in reference implementations, vulnerability disclosure and perhaps various other topics. Segment Resources: Vulnerabilities in the TPM2.0 reference implementation https://blog.quarkslab.com/vulnerabilities-in-the-tpm-20-reference-implementation-code.html Vulnerabilities in High Assurance Boot of NXP i.MX microprocessors https://blog.quarkslab.com/vulnerabilities-in-high-assurance-boot-of-nxp-imx-microprocessors.html Heap memory corruption in ASN.1 parsing code generated by Objective Systems Inc. ASN1C compiler for C/C++ https://github.com/programa-stic/security-advisories/blob/master/ObjSys/CVE-2016-5080/README.md Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw781
Released:
Apr 20, 2023
Format:
Podcast episode
Titles in the series (100)
Interview with Troy Hunt - Episode 339: Troy is a Software architect and Microsoft MVP, you'll usually find him writing about security concepts and process improvement in software delivery on his blog. He also has a free e-book out "OWASP Top 10 for .NET developers" by Security Weekly Podcast Network (Video)