Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

SUSE: 2025:20151-1 moderate: tpm2.0-tools, tpm2-0-tss security update

suse
Calendar Grey June 4, 2025
Dist Suse Esm H88
An important patch resolves moderate vulnerabilities in tpm2.0-tools and tpm2-0-tss for SUSE, introducing significant improvements.
* bsc#1223687 * bsc#1223689 * bsc#1223690 Cross-References:

Summary

## This update for tpm2.0-tools, tpm2-0-tss fixes the following issues: tpm2-0-tss: Update to version 4.1: \+ Security \- CVE-2024-29040: arbitrary quote data may go undetected by Fapi_VerifyQuote (bsc#1223690) * Fixed * fapi: Fix length check on FAPI auth callbacks * mu: Correct error message for errors * tss2-rc: fix unknown laer handler dropping bits. * fapi: Fix deviation from CEL specification (template_value was used instead of template_data). * fapi: Fix json syntax error in FAPI profiles which was ignored by json-c. * build: fix build fail after make clean. * mu: Fix unneeded size check in TPM2B unmarshaling. * fapi: Fix missing parameter encryption. * build: Fix failed build with --disable-vendor. * fapi: Fix flush of persistent handles.

References

* bsc#1223687

* bsc#1223689

* bsc#1223690

Cross-

* CVE-2024-29038

* CVE-2024-29039

* CVE-2024-29040

CVSS scores:

* CVE-2024-29038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

* CVE-2024-29039 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

* CVE-2024-29040 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Affected Products:

* SUSE Linux Micro 6.0

An update that solves three vulnerabilities can now be installed.

##

* https://www.suse.com/security/cve/CVE-2024-29038.html

* https://www.suse.com/security/cve/CVE-2024-29039.html

* https://www.suse.com/security/cve/CVE-2024-29040.html

* https://bugzilla.suse.com/show_bug.cgi?id=1223687

* https://bugzilla.suse.com/show_bug.cgi?id=1223689

Announcement ID: SUSE-SU-2025:20151-1
Release Date: 2025-03-18T10:58:11Z
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here