PT-2020-20382 · Google · Asylo

Kang Li

Published

2020-12-15

Updated

2020-12-17

CVE-2020-8944

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions Asylo versions up to 0.6.0

Description An arbitrary memory write issue allows an untrusted attacker to make a call to ecall restore() using the attribute output which fails to check the range of a pointer. An attacker can use this pointer to write to arbitrary memory addresses, including those within the secure enclave.

Recommendations For Asylo versions up to 0.6.0, upgrade past commit 382da2b8b09cbf928668a2445efb778f76bd9c8a. As a temporary workaround, consider restricting the use of the ecall restore() function until a patch is available.

Exploit

Fix

Buffer Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120CWE-787

Related Identifiers

CVE-2020-8944

Affected Products

Asylo

PT-2020-20382 · Google · Asylo

CVE-2020-8944

Weakness Enumeration

Related Identifiers

Affected Products

References · 4