CVE-2020-8937

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-8937

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-8937.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2020-8937

Published

2020-12-15T15:15:13Z

Modified

2025-10-21T05:57:28.805186Z

Severity

3.3 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVSS Calculator

Summary

[none]

Details

An arbitrary memory overwrite vulnerability in Asylo versions up to 0.6.0 allows an attacker to make a host call to encuntrustedcreatewaitqueue that uses a pointer queue that relies on UntrustedLocalMemcpy, which fails to validate where the pointer is located. This allows an attacker to write memory values from within the enclave. We recommend upgrading past commit a37fb6a0e7daf30134dbbf357c9a518a1026aa02

References

https://github.com/google/asylo/commit/a37fb6a0e7daf30134dbbf357c9a518a1026aa02

Affected packages

Git / github.com/google/asylo

Affected ranges

Type: GIT
Repo: https://github.com/google/asylo
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

a37fb6a0e7daf30134dbbf357c9a518a1026aa02

Affected versions

buildenv-v0.*

buildenv-v0.2.0

buildenv-v0.2.1

buildenv-v0.2.2

buildenv-v0.3.0

buildenv-v0.3.1

buildenv-v0.3.2

buildenv-v0.3.3

buildenv-v0.3.4

buildenv-v0.4.0

buildenv-v0.4.1

buildenv-v0.5.0

buildenv-v0.5.1

buildenv-v0.5.2

buildenv-v0.5.3

buildenv-v0.6.0

v0.*

v0.2.0

v0.2.1

v0.2.2

v0.3.0

v0.3.1

v0.3.2

v0.3.3

v0.3.4

v0.3.4.1

v0.4.0

v0.4.1

v0.5.0

v0.5.1

v0.5.2

v0.5.3

v0.6.0

Database specific

vanir_signatures

[
    {
        "source": "https://github.com/google/asylo/commit/a37fb6a0e7daf30134dbbf357c9a518a1026aa02",
        "signature_version": "v1",
        "id": "CVE-2020-8937-849573b7",
        "signature_type": "Function",
        "digest": {
            "function_hash": "44257157902947494162844525832252865621",
            "length": 505.0
        },
        "deprecated": false,
        "target": {
            "function": "enc_untrusted_create_wait_queue",
            "file": "asylo/platform/host_call/trusted/concurrency.cc"
        }
    },
    {
        "source": "https://github.com/google/asylo/commit/a37fb6a0e7daf30134dbbf357c9a518a1026aa02",
        "signature_version": "v1",
        "id": "CVE-2020-8937-c053cf92",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "194937857993089609554892458032141249900",
                "179555727451067022548182395374750190945",
                "327136522812310878250778419827452847187",
                "241393843159070824180710593079454427904"
            ]
        },
        "deprecated": false,
        "target": {
            "file": "asylo/platform/host_call/trusted/concurrency.cc"
        }
    }
]