Unrated severityNVD Advisory· Published Jun 1, 2021· Updated Aug 3, 2024

CVE-2021-3543

Description

A flaw null pointer dereference in the Nitro Enclaves kernel driver was found in the way that Enclaves VMs forces closures on the enclave file descriptor. A local user of a host machine could use this flaw to crash the system or escalate their privileges on the system.

Affected products

Nitro Enclaves/Nitro Enclaves kernel driverdescription
osv-coords
pkg:rpm/almalinux/kernel-tools-libs-devel
Range: < 4.18.0-305.3.1.el8_4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
lore.kernel.org/lkml/20210429165941.27020-2-andraprs%40amazon.com/mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000