Stb Erom Upgrade V2.1.0 -

Security is a major focus. V2.1.0 patches the infamous "BootROM bypass" vulnerability (CVE-2023-45678) that allowed unsigned code execution via USB. The new chain of trust now:

# After booting into EROM console erom> upgrade from usb erom> set anti_rollback_version 2.1.0 erom> flash bootloader u-boot.bin erom> flash partition_table pt_v2.img erom> reboot Stb Erom Upgrade V2.1.0

| Issue | Probable Cause | Solution | |-------|----------------|----------| | | Wrong display resolution default in V2.1.0 | Connect via serial console and run hdmi reset or setenv hdmi_res 1080p60 | | USB upgrade not starting | USB drive not detected by bootROM | Try a smaller USB drive (4GB or less). Or rename file to amlogic_upgrade.bin for Amlogic chips | | "Bad CRC" error on boot | Environment variables corrupted | Enter console, run env default -a , then saveenv | | Device stuck in boot loop | Main firmware incompatible with new Erom | Install a newer main firmware built for V2.1.0. Downgrade Erom if necessary | | Brick (no serial output, no LED) | Wrong Erom binary or power failure | Requires external SPI/NAND programmer to flash a known good image directly onto the memory chip | Security is a major focus