2 matches found
CVE-2014-5118
CVE-2014-5118 concerns a security bypass in Trusted Boot (tboot) prior to version 1.8.2, specifically a bypass in the loader.c component that undermines the measured boot mechanism. Multiple connected documents confirm the issue and document remediation efforts; SUSE advisories (SUSE-SU-2017:3114...
CVE-2017-16837
CVE-2017-16837 affects tboot up to 1.9.6: certain function pointers in Trusted Boot are not validated, enabling local code execution and the ability to overwrite dynamic TPM PCRs by hooking these pointers. Exploitation is local; impact can include high integrity/availability concerns. The provide...