Alerts This Week
Warning Icon 1 1,109
Alerts This Week
Warning Icon 1 1,109

openSUSE 2026 Keylime Moderate Bypass Fix SUSE-SU-2026-21025-1

opensuse
Calendar Grey June 30, 2026
Dist Opensuse Esm H88
Get essential updates for openSUSE keylime including a fix for a vulnerability and a bug. Stay secure with this essential patch.
An update that solves one vulnerability and has one bug fix can now be installed.

Description

This update for keylime fixes the following issue

- CVE-2026-6420: use of hardcoded challenge nonce for TPM quote attestation allows for security bypass (bsc#1264265).

Changes for keylime:

- Update to version 7.14.2.

Patch instructions:

To install this openSUSE security update use the suse recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 16.0

zypper in -t patch openSUSE-Leap-16.0-1037=1

Patch

Package List

- openSUSE Leap 16.0:

keylime-config-7.14.2-160000.1.1

keylime-firewalld-7.14.2-160000.1.1

keylime-logrotate-7.14.2-160000.1.1

keylime-registrar-7.14.2-160000.1.1

keylime-tenant-7.14.2-160000.1.1

keylime-tpm_cert_store-7.14.2-160000.1.1

keylime-verifier-7.14.2-160000.1.1

python313-keylime-7.14.2-160000.1.1

References

* bsc#1264265

References:

* https://www.suse.com/security/cve/CVE-2026-6420.html

Severity
moderate
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2026:21025-1
Rating: moderate
Affected Products: openSUSE Leap 16.0 -------------------------------------------------------------

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here