CVE-2020-8941
The CVE concerns Asylo, up to version 0.6.0, with an unchecked klinux_addr_buffer parameter in enc_untrusted_inet_pton that allows an attacker to read memory outside the intended buffer, potentially exposing memory from within a secure enclave. The root cause is a missing bounds check on the para...