Ubuntu
libtpms package

libtpms 0.9.3-0ubuntu1.22.10.1 source package in Ubuntu

Changelog

libtpms (0.9.3-0ubuntu1.22.10.1) kinetic-security; urgency=medium

  * SECURITY UPDATE: out-of-bounds read/write
    - debian/patches/CVE-2023-1017_1018.patch: add a buffer size check and
      properly reduce bufferSize variable by the number of bytes that make
      up the cipherSize in CryptParameterDecryption() in
      src/tpm2/CryptUtil.c
    - CVE-2023-1017
    - CVE-2023-1018
  * SECURITY UPDATE: out-of-bounds read
    - debian/patches/tpm2-Check-size-of-TPM2B_NAME.patch: add a buffer
      size check in TPM2_PolicyAuthorize() in src/tpm2/EACommands.c.
    - No CVE number

 -- Rodrigo Figueiredo Zaiden <email address hidden>  Wed, 01 Mar 2023 19:45:47 -0300

Upload details

Uploaded by:
Rodrigo Figueiredo Zaiden
Uploaded to:
Kinetic
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
libs
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
libtpms_0.9.3.orig.tar.gz 1.2 MiB b7f10437f9a569bbadf2c66b74328c21b649abe3c2b940cc8322391091b20c14
libtpms_0.9.3-0ubuntu1.22.10.1.debian.tar.xz 13.1 KiB 84ccaf672b9dbc863bb7fac5e6d44bc8e9b60f387e8eb50b66db63cfbd8986c9
libtpms_0.9.3-0ubuntu1.22.10.1.dsc 1.8 KiB de2dc8c69e1e86ad2484458865b1bea52f0c22518081dcf7048838e9b46b5004

View changes file

Binary packages built by this source

libtpms-dev: No summary available for libtpms-dev in ubuntu kinetic.

No description available for libtpms-dev in ubuntu kinetic.

libtpms0: No summary available for libtpms0 in ubuntu kinetic.

No description available for libtpms0 in ubuntu kinetic.

libtpms0-dbgsym: No summary available for libtpms0-dbgsym in ubuntu kinetic.

No description available for libtpms0-dbgsym in ubuntu kinetic.