Package "libtpms"

Name:	libtpms
Description:	This package is just an umbrella for a group of other packages, it has no description. Description samples from packages in group: libtpms header files and man pages TPM emulation library
Latest version:	0.9.3-0ubuntu1.22.04.1
Release:	jammy (22.04)
Level:	security
Repository:	main

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Other versions of "libtpms" in Jammy

Repository	Area	Version
base	main	0.9.3-0ubuntu1
updates	main	0.9.3-0ubuntu1.22.04.1

Packages in group

Deleted packages are displayed in grey.

Changelog

Version: 0.9.3-0ubuntu1.22.04.1 2023-03-07 19:07:10 UTC

libtpms (0.9.3-0ubuntu1.22.04.1) jammy-security; urgency=medium * SECURITY UPDATE: out-of-bounds read/write - debian/patches/CVE-2023-1017_1018.patch: add a buffer size check and properly reduce bufferSize variable by the number of bytes that make up the cipherSize in CryptParameterDecryption() in src/tpm2/CryptUtil.c - CVE-2023-1017 - CVE-2023-1018 * SECURITY UPDATE: out-of-bounds read - debian/patches/tpm2-Check-size-of-TPM2B_NAME.patch: add a buffer size check in TPM2_PolicyAuthorize() in src/tpm2/EACommands.c. - No CVE number -- Rodrigo Figueiredo Zaiden <email address hidden> Wed, 01 Mar 2023 15:26:10 -0300

CVE-2023-1017	An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in the CryptP
CVE-2023-1018	An out-of-bounds read vulnerability exists in TPM2.0's Module Library allowing a 2-byte read past the end of a TPM2.0 command in the CryptParameterDe

About - Send Feedback to @ubuntu_updates

Package "libtpms"

Links

Other versions of "libtpms" in Jammy

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

proposed

updates

PPA updates