11 matches found
TencentOS Server 3: libtpms (TSSA-2022:0274)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0274 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
Linux Distros Unpatched Vulnerability : CVE-2021-3623
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libtpms. The flaw can be triggered by specially-crafted TPM 2 command packets containing illegal values and may lead to an out-of-bounds...
RHEL 8 : libtpms (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libtpms: out-of-bounds access when trying to resume the state of the vTPM CVE-2021-3623 - A flaw was foun...
CentOS 9 : libtpms-0.8.2-0.20210301git729fc6a4ca.el9.6
The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the libtpms-0.8.2-0.20210301git729fc6a4ca.el9.6 build changelog. - out-of-bounds access when trying to resume the state of the vTPM CVE-2021-3623 Note that Nessus has not tested for this...
CentOS 9 : libtpms-0.9.1-2.20211126git1ff6fe1f43.el9
The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the libtpms-0.9.1-2.20211126git1ff6fe1f43.el9 build changelog. - out-of-bounds access when trying to resume the state of the vTPM CVE-2021-3623 - out-of-bounds access via specially...
SUSE: Security Advisory (SUSE-SU-2022:4457-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:4457-1 Security update for libtpms
This update for libtpms fixes the following issues: - CVE-2021-3623: Fixed out-of-bounds access when trying to resume the state of the vTPM bsc1187767...
Oracle Linux 7 : libtpms (ELSA-2022-9240)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9240 advisory. libtpms 0.8.8-1.el7 - spec: Update spec file to version 0.8.8 Fri Sep 17 2021 Stefan Berger - 0.8.7-1 - tpm2: Fixes for building and running with OpenS...
Mageia: Security Advisory (MGASA-2021-0590)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated libtpms/swtpm packages fix security vulnerability
CryptSym: fix AES output IV CVE-2021-3505. Fixed a context save and suspend/resume problem when public keys are loaded. Reset too large size indicators in TPM2B to avoid access beyond buffer CVE-2021-3623 Restore original value in buffer if unmarshalled one was illegal Fixed out-of-bounds access...
[ASA-202107-9] libtpms: information disclosure
Arch Linux Security Advisory ASA-202107-9 ========================================= Severity: Medium Date : 2021-07-01 CVE-ID : CVE-2021-3623 Package : libtpms Type : information disclosure Remote : No Link : https://security.archlinux.org/AVG-2108 Summary ======= The package libtpms before versi...