PT-2022-3216 · Intel+1 · Intel Sgx+1

Published

2022-03-11

Updated

2022-12-23

CVE-2021-33135

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to uncontrolled resource consumption in the Linux kernel drivers for Intel(R) SGX. This may allow an authenticated user to potentially enable denial of service via local access. The vulnerability is associated with the switching of reserved memory from the Enclave Page Cache (EPC) segment to regular RAM, which can lead to a denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

BDU:2022-03915

CVE-2021-33135

OESA-2022-1705

OPENSUSE-SU-2022_3288-1

OPENSUSE-SU-2022_3293-1

OPENSUSE-SU-2022_4617-1

SUSE-SU-2022:3288-1

SUSE-SU-2022:3293-1

SUSE-SU-2022:4617-1

Affected Products

Intel Sgx

Suse

PT-2022-3216 · Intel+1 · Intel Sgx+1

CVE-2021-33135

Weakness Enumeration

Related Identifiers

Affected Products

References · 473