These are all security issues fixed in the arm-trusted-firmware-2.5-2.3 package on the GA media of openSUSE Tumbleweed.