CVE-2020-8937
CVE-2020-8937 affects Asylo versions up to 0.6.0. The vulnerability enables an arbitrary enclave memory overwrite via a host call to enc_untrusted_create_wait_queue that uses a pointer queue relying on UntrustedLocalMemcpy, failing to validate pointer location. This allows memory values to be wri...