Lucian Cojocar

**Name of the Vulnerable Software and Affected Versions** Intel Xeon Processors (affected versions not specified) **Description** The issue is related to unauthorized error injection in Intel(R) SGX or Intel(R) TDX for some Intel(R) Xeon(R) Processors, which may allow a privileged user to potentially enable escalation of privilege via local access. This could lead to access to confidential data, disruption of data integrity, and denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** uClibc-ng versions prior to 1.0.16 uClibc versions prior to 1.0.16 **Description** The issue is caused by an integer signedness error in the libc/string/arm/memset.S file, which allows context-dependent attackers to cause a denial of service (crash) by providing a negative length value to the `memset` function. **Recommendations** For uClibc-ng versions prior to 1.0.16, update to version 1.0.16 or later. For uClibc versions prior to 1.0.16, update to version 1.0.16 or later.