Lucene search
RedhatCVELIST:CVE-2021-3505HistoryApr 19, 2021 - 8:22 p.m.
CVE-2021-3505
2021-04-1920:22:05
CWE-331
redhat
www.cve.org
1
A flaw was found in libtpms in versions before 0.8.0. The TPM 2 implementation returns 2048 bit keys with ~1984 bit strength due to a bug in the TCG specification. The bug is in the key creation algorithm in RsaAdjustPrimeCandidate(), which is called before the prime number check. The highest threat from this vulnerability is to data confidentiality.
CNA Affected
[
{
"product": "libtpms",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "libtpms 0.8.0"
}
]
}
]Related
nvd
nvd
CVE-2021-3505
2021-04-19 21:15:13
redhatcve
redhatcve
CVE-2021-3505
2021-04-16 14:01:24
debiancve
debiancve
CVE-2021-3505
2021-04-19 21:15:13
fedora
fedora
[SECURITY] Fedora 33 Update: libtpms-0.8.2-0.20210426git729fc6a4ca.fc33
2021-05-05 00:54:10
openvas
openvas
Fedora: Security Advisory for libtpms (FEDORA-2021-cfdc434610)
2021-05-05 00:00:00
Mageia: Security Advisory (MGASA-2021-0590)
2022-01-28 00:00:00
ubuntucve
ubuntucve
CVE-2021-3505
2021-04-19 00:00:00
cve
cve
CVE-2021-3505
2021-04-19 21:15:13
osv
osv
CVE-2021-3505
2021-04-19 21:15:13
prion
prion
Design/Logic Flaw
2021-04-19 21:15:00
ibm
ibm
nessus
nessus
RHEL 8 : av_libtpms (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 8 : libtpms (Unpatched Vulnerability)
2024-05-11 00:00:00
mageia
mageia
Updated libtpms/swtpm packages fix security vulnerability
2021-12-30 19:41:51