Moderate: libtpms security update

The libtpms is a library providing Trusted Platform Module TPM functionality for virtual machines. Security Fixes: libtpms: Libtpms Out-of-Bounds Read Vulnerability CVE-2025-49133 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

RHEL 9 : libtpms (RHSA-2025:12100)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:12100 advisory. The libtpms is a library providing Trusted Platform Module TPM functionality for virtual machines. Security Fixes: libtpms: Libtpms Out-of-Bounds Re...

ALSA-2025:12100 Moderate: libtpms security update

The libtpms is a library providing Trusted Platform Module TPM functionality for virtual machines. Security Fixes: libtpms: Libtpms Out-of-Bounds Read Vulnerability CVE-2025-49133 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

RHEL 9 : libtpms (RHSA-2025:12111)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:12111 advisory. The libtpms is a library providing Trusted Platform Module TPM functionality for virtual machines. Security Fixes: libtpms: Libtpms Out-of-Bounds Re...

RHEL 9 : libtpms (RHSA-2025:12112)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:12112 advisory. The libtpms is a library providing Trusted Platform Module TPM functionality for virtual machines. Security Fixes: libtpms: Libtpms Out-of-Bounds Re...

OESA-2025-1836 libtpms security update

A library providing TPM functionality for VMs. Targeted for integration into Qemu. Security Fixes: Libtpms is a library that targets the integration of TPM functionality into hypervisors, primarily into Qemu. Libtpms, which is derived from the TPM 2.0 reference implementation code published by th...

Ubuntu: Security Advisory (USN-7617-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

libtpms-devel-0.10.1-1.1 on GA media (moderate)

libtpms-devel-0.10.1-1.1 on GA media Announcement ID: openSUSE-SU-2025:15244-1 Rating: moderate Cross-References: CVE-2025-49133 CVSS scores: CVE-2025-49133 SUSE : 5.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can n...

Fedora: Security Advisory (FEDORA-2025-77cdabc09b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 42 : libtpms (2025-77cdabc09b)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-77cdabc09b advisory. Upgrade to libtpms 0.10.1 fixing CVE-2025-49133 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

Fedora 41 : libtpms (2025-25aa48d158)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-25aa48d158 advisory. Upgrade to libtpms 0.9.7 fixing CVE-2025-49133 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

Fedora: Security Advisory (FEDORA-2025-25aa48d158)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-49133

creationtimestamp| type| source ---|---|--- 2025-06-10 20:31:55+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17994 2025-07-30 18:05:38+00:00| seen| https://bsky.app/profile/bluesky.awakari.com/post/3lv77jnzi732z 2025-07-30 18:06:21+00:00| seen|...

CVE-2025-49133

Libtpms is a library that targets the integration of TPM functionality into hypervisors, primarily into Qemu. Libtpms, which is derived from the TPM 2.0 reference implementation code published by the Trusted Computing Group, is prone to a potential out of bounds OOB read vulnerability. The...

CVE-2025-49133

Libtpms is a library that targets the integration of TPM functionality into hypervisors, primarily into Qemu. Libtpms, which is derived from the TPM 2.0 reference implementation code published by the Trusted Computing Group, is prone to a potential out of bounds OOB read vulnerability. The...

CVE-2025-49133

The CVE-2025-49133 entry affects libtpms, a TPM functionality library for virtual machines, with a flaw in CryptHmacSign that pairs signKey (ALG_KEYEDHASH) with inScheme (ECC/RSA) leading to an out-of-bounds read. The issue can be triggered by sending malicious TPM 2.0 commands to a vTPM (swtpm) ...

CVE-2025-49133

Libtpms is a library that targets the integration of TPM functionality into hypervisors, primarily into Qemu. Libtpms, which is derived from the TPM 2.0 reference implementation code published by the Trusted Computing Group, is prone to a potential out of bounds OOB read vulnerability. The...

CVE-2025-49133 Libtpms contains a possible out-of-bound access and abort due to HMAC signing issue

Libtpms is a library that targets the integration of TPM functionality into hypervisors, primarily into Qemu. Libtpms, which is derived from the TPM 2.0 reference implementation code published by the Trusted Computing Group, is prone to a potential out of bounds OOB read vulnerability. The...