CVE-2021-22549

Source
https://nvd.nist.gov/vuln/detail/CVE-2021-22549
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-22549.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2021-22549
Published
2021-06-08T14:15:07Z
Modified
2025-01-08T10:33:52.974045Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

An attacker can modify the address to point to trusted memory to overwrite arbitrary trusted memory. It is recommended to update past 0.6.2 or git commit https://github.com/google/asylo/commit/53ed5d8fd8118ced1466e509606dd2f473707a5c

References

Affected packages

Git / github.com/google/asylo

Affected ranges

Type
GIT
Repo
https://github.com/google/asylo
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Fixed

Affected versions

buildenv-v0.*

buildenv-v0.2.0
buildenv-v0.2.1
buildenv-v0.2.2
buildenv-v0.3.0
buildenv-v0.3.1
buildenv-v0.3.2
buildenv-v0.3.3
buildenv-v0.3.4
buildenv-v0.4.0
buildenv-v0.4.1
buildenv-v0.5.0
buildenv-v0.5.1
buildenv-v0.5.2
buildenv-v0.5.3
buildenv-v0.6.0
buildenv-v0.6.1
buildenv-v0.6.2

v0.*

v0.2.0
v0.2.1
v0.2.2
v0.3.0
v0.3.1
v0.3.2
v0.3.3
v0.3.4
v0.3.4.1
v0.4.0
v0.4.1
v0.5.0
v0.5.1
v0.5.2
v0.5.3
v0.6.0
v0.6.1
v0.6.2