USN-6680-3 linux-aws, linux-aws-6.5 vulnerabilities

黄思聪 discovered that the NFC Controller Interface NCI implementation in the Linux kernel did not properly handle certain memory allocation failure conditions, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service system crash...

CVE-2023-38023

An issue was discovered in SCONE Confidential Computing Platform before 5.8.0 for Intel SGX. Lack of pointer-alignment logic in sconedispatch and other entry functions allows a local attacker to access unauthorized information, aka an "AEPIC Leak."...

SCONE Confidential Computing Platform Security Vulnerability

SCONE Confidential Computing Platform is an open source platform for implementing confidential computing from SCONE, Germany. A security vulnerability exists in SCONE Confidential Computing Platform versions prior to v5.8.0, which stems from incorrect initialization of the x87 and SSE...

CVE-2023-38023

SCONE Confidential Computing Platform before 5.8.0 (Intel SGX) is affected. The root cause is lack of pointer-alignment logic in __scone_dispatch and other entry functions, enabling a local attacker to access unauthorized information (AEPIC Leak). Affected component: scone dispatch/entry points. ...