USN-6680-3 linux-aws, linux-aws-6.5 vulnerabilities

黄思聪 discovered that the NFC Controller Interface NCI implementation in the Linux kernel did not properly handle certain memory allocation failure conditions, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service system crash...

CVE-2023-38023

An issue was discovered in SCONE Confidential Computing Platform before 5.8.0 for Intel SGX. Lack of pointer-alignment logic in sconedispatch and other entry functions allows a local attacker to access unauthorized information, aka an "AEPIC Leak."...

CVE-2023-38023

SCONE Confidential Computing Platform before 5.8.0 (Intel SGX) is affected. The root cause is lack of pointer-alignment logic in __scone_dispatch and other entry functions, enabling a local attacker to access unauthorized information (AEPIC Leak). Affected component: scone dispatch/entry points. ...

SCONE Confidential Computing Platform Security Vulnerability

SCONE Confidential Computing Platform is an open source platform for implementing confidential computing from SCONE, Germany. A security vulnerability exists in SCONE Confidential Computing Platform versions prior to v5.8.0, which stems from incorrect initialization of the x87 and SSE...