Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Ubuntu 25.04 USN-7617-1 critical: libtpms denial of service

ubuntu
Calendar Grey July 3, 2025
Dist Ubuntu Esm H88
Important news regarding libtpms in Ubuntu rectifies a possible denial of service risk from specially designed input. Upgrade immediately.
libtpms could be made to crash if it received specially crafted input.

Summary

libtpms could be made to crash if it received specially crafted

input.

Software Description:

- libtpms: TPM emulation library

Details:

It was discovered that libtpms did not properly manage memory

when performing crafted cryptographic operations. An attacker could

possibly use this issue to cause a denial of service.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 25.04
  libtpms0                        0.9.3-0ubuntu4.25.04.1

Ubuntu 24.10
  libtpms0                        0.9.3-0ubuntu4.24.10.1

Ubuntu 24.04 LTS
  libtpms0                        0.9.3-0ubuntu4.24.04.1

Ubuntu 22.04 LTS
  libtpms0                        0.9.3-0ubuntu1.22.04.2

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7617-1

CVE-2025-49133

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7617-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here