Mageia 8 Moderate: 2022-0112 Out-Of-Bounds Access in swtpm
mageia
March 23, 2022
swtpm is a libtpms-based TPM emulator with socket, character device, and Linux CUSE interface
Summary
swtpm is a libtpms-based TPM emulator with socket, character device, and
Linux CUSE interface. Versions prior to 0.5.3, 0.6.2, and 0.7.1 are
vulnerable to out-of-bounds read. A specially crafted header of swtpm's
state, where the blobheader's hdrsize indicator has an invalid value, may
cause an out-of-bounds access when the byte array representing the state
of the TPM is accessed. This will likely crash swtpm or prevent it from
starting since the state cannot be understood. Users should upgrade to
swtpm v0.5.3, v0.6.2, or v0.7.1 to receive a patch. There are currently no
known workarounds. (CVE-2022-23645)
References
- https://bugs.mageia.org/show_bug.cgi?id=30125
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/WL735FW266GO4C2JX4CJBOIOB7R7AY5A/
- https://www.cve.org/CVERecord?id=CVE-2022-23645
Resolution
SRPMS
- 8/core/swtpm-0.7.1-1.mga8
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Publication date: 23 Mar 2022
URL: https://advisories.mageia.org/MGASA-2022-0112.html
Type: security
CVE: CVE-2022-23645
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!