Allele Security Alert
ASA-2019-00141, CVE-2019-0122, INTEL-SA-00217
Double-free in Intel SGX SDK
Intel SGX SDK for Windows
Intel SGX SDK for Linux
Intel SGX SDK for Windows before version 2.1
Intel SGX SDK for Linux before version 2.2
Intel SGX SDK for Windows version 2.1 or later
Intel SGX SDK for Linux version 2.2 or later
Proof of concept
Double-free vulnerability in Intel SGX SDK for Linux before version 2.2 and Intel SGX SDK for Windows before version 2.1 may allow an authenticated user to potentially enable information disclosure or denial of service via local access.
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: March 17, 2019