Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Prevent attacker from manipulating FPU tag word used in SGX enclave #73471

Merged
merged 2 commits into from
Jun 20, 2020
Merged

Prevent attacker from manipulating FPU tag word used in SGX enclave #73471

merged 2 commits into from
Jun 20, 2020

Commits on Jun 18, 2020

  1. Prevent attacker from manipulating FPU tag word used in SGX enclave 

    Insufficient sanitization of the x87 FPU tag word in the trusted enclave runtime allowed unprivileged adversaries in the containing host application to induce incoherent or unexpected results for ABI-compliant compiled enclave application code that uses the x87 FPU.

Vulnerability was disclosed to us by Fritz Alder, Jo Van Bulck, David Oswald and Frank Piessens
    @raoulstrackx
    raoulstrackx committed Jun 18, 2020
    Configuration menu
    Copy the full SHA
    daedb79 View commit details
    Browse the repository at this point in the history

Commits on Jun 19, 2020

  1. Using xsave restore to restore complete FPU state

    @raoulstrackx
    raoulstrackx committed Jun 19, 2020
    Configuration menu
    Copy the full SHA
    33b304c View commit details
    Browse the repository at this point in the history