Gerardo Molina Sabido

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58 Description: A deadlock issue in the Linux kernel's SGX NUMA node search has been resolved. The problem occurred when the current node did not have an EPC section configured by firmware and all other EPC sections were used up, causing the CPU to hang in a while loop indefinitely, leading to a soft lockup. This issue was not related to the requirement for functionality, as setting up an EPC section on each node is not necessary, but rather enhances performance. The loop has been reworked to start and end on a node that has SGX memory, avoiding the deadlock. Recommendations: For Linux kernel versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider reworking the loop to start and end on a node that has SGX memory to avoid the deadlock. Restrict access to the SGX NUMA node search functionality to minimize the risk of exploitation until the update can be applied.