CVE-2021-3543

EPSS 0.3%CWE-416

A flaw null pointer dereference in the Nitro Enclaves kernel driver was found in the way that Enclaves VMs forces closures on the enclave file descriptor. A local user of a host machine could use this flaw to crash the system or escalate their privileges on the system.

Produtos afetados

n/a · kernel

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://bugzilla.redhat.com/show_bug.cgi?id=1953022 https://lore.kernel.org/lkml/20210429165941.27020-2-andraprs%40amazon.com/