rpm package
opensuse/tpm2.0-tools&distro=openSUSE Leap Micro 5.4
pkg:rpm/opensuse/tpm2.0-tools&distro=openSUSE%20Leap%20Micro%205.4
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-29039 | Cri | 9.0 | < 5.2-150400.6.3.1 | 5.2-150400.6.3.1 | Jun 28, 2024 | tpm2 is the source repository for the Trusted Platform Module (TPM2.0) tools. This vulnerability allows attackers to manipulate tpm2_checkquote outputs by altering the TPML_PCR_SELECTION in the PCR input file. As a result, digest values are incorrectly mapped to PCR slots and ba | |
| CVE-2024-29038 | Med | 4.3 | < 5.2-150400.6.3.1 | 5.2-150400.6.3.1 | Jun 28, 2024 | tpm2-tools is the source repository for the Trusted Platform Module (TPM2.0) tools. A malicious attacker can generate arbitrary quote data which is not detected by `tpm2 checkquote`. This issue was patched in version 5.7. |
- affected < 5.2-150400.6.3.1fixed 5.2-150400.6.3.1
tpm2 is the source repository for the Trusted Platform Module (TPM2.0) tools. This vulnerability allows attackers to manipulate tpm2_checkquote outputs by altering the TPML_PCR_SELECTION in the PCR input file. As a result, digest values are incorrectly mapped to PCR slots and ba
- affected < 5.2-150400.6.3.1fixed 5.2-150400.6.3.1
tpm2-tools is the source repository for the Trusted Platform Module (TPM2.0) tools. A malicious attacker can generate arbitrary quote data which is not detected by `tpm2 checkquote`. This issue was patched in version 5.7.