Download
| Alert*
oval:org.secpod.oval:def:88135
The host is missing a critical security update for KB5023696 oval:org.secpod.oval:def:88136 The host is missing a critical security update for KB5023697 oval:org.secpod.oval:def:2600232 The libtpms is a library providing Trusted Platform Module functionality for virtual machines. oval:org.secpod.oval:def:88140 The host is missing a critical security update for KB5023706 oval:org.secpod.oval:def:88141 The host is missing a critical security update for KB5023713 oval:org.secpod.oval:def:708010 libtpms: TPM emulation library Several security issues were fixed in Libtpms. oval:org.secpod.oval:def:89491 libtpms: TPM emulation library Several security issues were fixed in Libtpms. oval:org.secpod.oval:def:507660 The libtpms is a library providing Trusted Platform Module functionality for virtual machines. Security Fix: * tpm: TCG TPM2.0 implementations vulnerable to memory corruption * tpm2: TCG TPM2.0 implementations vulnerable to memory corruption For more details about the security issue, including th ... oval:org.secpod.oval:def:89048769 This update for libtpms fixes the following issues: * CVE-2023-1017: Fixed out-of-bounds write in CryptParameterDecryption . * CVE-2023-1018: Fixed out-of-bounds read in CryptParameterDecryption . oval:org.secpod.oval:def:1506662 [0.9.1-3.20211126git1ff6fe1f43] - Backport "tpm2: Check size of buffer before accessing it" Resolves: rhbz#2173960 Resolves: rhbz#2173967 oval:org.secpod.oval:def:88139 The host is missing a critical security update for KB5023705 oval:org.secpod.oval:def:125126 A library providing TPM functionality for VMs. Targeted for integration into Qemu. oval:org.secpod.oval:def:125169 A library providing TPM functionality for VMs. Targeted for integration into Qemu. oval:org.secpod.oval:def:88137 The host is missing a critical security update for KB5023698 oval:org.secpod.oval:def:88138 The host is missing a critical security update for KB5023702 oval:org.secpod.oval:def:88165 TPM2.0 Module Library Elevation of Privilege Vulnerability. By leveraging malicious TPM commands from a guest VM to a target running Hyper-V, an attacker can cause an out of bounds write in the root partition. |