Rocky Linux: RLSA-2024:1139 keylime security update Security Advisories Updates
Summary
An update is available for keylime. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. Security Fix(es): * keylime: Attestation failure when the quote's signature does not validate (CVE-2023-3674) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
RPMs
keylime-0:7.3.0-13.el9_3.aarch64.rpm
keylime-0:7.3.0-13.el9_3.ppc64le.rpm
keylime-0:7.3.0-13.el9_3.s390x.rpm
keylime-0:7.3.0-13.el9_3.src.rpm
keylime-0:7.3.0-13.el9_3.x86_64.rpm
keylime-base-0:7.3.0-13.el9_3.aarch64.rpm
keylime-base-0:7.3.0-13.el9_3.ppc64le.rpm
keylime-base-0:7.3.0-13.el9_3.s390x.rpm
keylime-base-0:7.3.0-13.el9_3.x86_64.rpm
keylime-registrar-0:7.3.0-13.el9_3.aarch64.rpm
keylime-registrar-0:7.3.0-13.el9_3.ppc64le.rpm
keylime-registrar-0:7.3.0-13.el9_3.s390x.rpm
keylime-registrar-0:7.3.0-13.el9_3.x86_64.rpm
keylime-selinux-0:7.3.0-13.el9_3.noarch.rpm
keylime-tenant-0:7.3.0-13.el9_3.aarch64.rpm
keylime-tenant-0:7.3.0-13.el9_3.ppc64le.rpm
keylime-tenant-0:7.3.0-13.el9_3.s390x.rpm
keylime-tenant-0:7.3.0-13.el9_3.x86_64.rpm
keylime-verifier-0:7.3.0-13.el9_3.aarch64.rpm
keylime-verifier-0:7.3.0-13.el9_3.ppc64le.rpm
keylime-verifier-0:7.3.0-13.el9_3.s390x.rpm
keylime-verifier-0:7.3.0-13.el9_3.x86_64.rpm
python3-keylime-0:7.3.0-13.el9_3.aarch64.rpm
python3-keylime-0:7.3.0-13.el9_3.ppc64le.rpm
python3-keylime-0:7.3.0-13.el9_3.s390x.rpm
python3-keylime-0:7.3.0-13.el9_3.x86_64.rpm
References
No References
CVEs
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3674
Fixes
https://bugzilla.redhat.com/show_bug.cgi?id=2222903