Linux Kernel x86/SGX Offset-Length Validation Overflow Vulnerability

Vulnerability

A vulnerability in the Linux kernel's handling of Intel Software Guard Extensions (SGX) has been addressed. The issue was in the 'sgx_validate_offset_length()' function, which checks 'offset' and 'length' parameters from userspace. The function lacked a proper overflow check on the addition of these parameters, potentially leading to unintended behavior. This vulnerability has been resolved by adding the necessary overflow check.

Impact

The vulnerability could have allowed for an overflow condition in the offset and length validation, potentially leading to memory corruption or other unintended consequences.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel x86/SGX Offset-Length Validation Overflow Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating