Alerts This Week
Warning Icon 1 535
Alerts This Week
Warning Icon 1 535

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":547,"type":"x","order":1,"pct":78.48,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.88,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.34,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 0 articles for you...
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisorylow severityrocky linux

Rocky Linux 9 RLSA-2024:1139 Low: Keylime Remote Attestation Issue

Low: keylime security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2024:1139", "synopsis": "Low: keylime security update", "severity": "SEVERITY_LOW", "topic": "An update is available for keylime.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution.\n\nSecurity Fix(es):\n\n* keylime: Attestation failure when the quote's signature does not validate (CVE-2023-3674)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2222903", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2222903", "description": ""}], "cves": [{"name": "CVE-2023-3674", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-3674", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}], "references": [], "publishedAt": "2024-05-10T14:32:42.380544Z", "rpms": {"Rocky Linux 9": {"nvras": ["keylime-0:7.3.0-13.el9_3.aarch64.rpm", "keylime-0:7.3.0-13.el9_3.ppc64le.rpm", "keylime-0:7.3.0-13.el9_3.s390x.rpm", "keylime-0:7.3.0-13.el9_3.src.rpm", "keylime-0:7.3.0-13.el9_3.x86_64.rpm", "keylime-base-0:7.3.0-13.el9_3.aarch64.rpm", "keylime-base-0:7.3.0-13.el9_3.ppc64le.rpm", "keylime-base-0:7.3.0-13.el9_3.s390x.rpm", "keylime-base-0:7.3.0-13.el9_3.x86_64.rpm", "keylime-registrar-0:7.3.0-13.el9_3.aarch64.rpm", "keylime-registrar-0:7.3.0-13.el9_3.ppc64le.rpm", "keylime-registrar-0:7.3.0-13.el9_3.s390x.rpm", "keylime-registrar-0:7.3.0-13.el9_3.x86_64.rpm", "keylime-selinux-0:7.3.0-13.el9_3.noarch.rpm", "keylime-tenant-0:7.3.0-13.el9_3.aarch64.rpm","keylime-tenant-0:7.3.0-13.el9_3.ppc64le.rpm", "keylime-tenant-0:7.3.0-13.el9_3.s390x.rpm", "keylime-tenant-0:7.3.0-13.el9_3.x86_64.rpm", "keylime-verifier-0:7.3.0-13.el9_3.aarch64.rpm", "keylime-verifier-0:7.3.0-13.el9_3.ppc64le.rpm", "keylime-verifier-0:7.3.0-13.el9_3.s390x.rpm", "keylime-verifier-0:7.3.0-13.el9_3.x86_64.rpm", "python3-keylime-0:7.3.0-13.el9_3.aarch64.rpm", "python3-keylime-0:7.3.0-13.el9_3.ppc64le.rpm", "python3-keylime-0:7.3.0-13.el9_3.s390x.rpm", "python3-keylime-0:7.3.0-13.el9_3.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A minor security patch for keylime on Rocky Linux 9 has been released, resolving concerns related to remote attestation functionalities.. Keylime Security Update, Rocky Linux Remote Attestation Fix, Low Severity Update. . Severity: Low. LinuxSecurity.com Team

Calendar 2 May 10, 2024 Low Rocky Linux
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoracritical fix

Fedora 38 FEDORA-2023-ed9922536e Critical Keylime Security Fix

Backport upstream fixes - Fixes: CVE-2023-38200 - Fixes: CVE-2023-38201. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-ed9922536e 2023-11-12 01:42:07.505659 -------------------------------------------------------------------------------- Name : keylime Product : Fedora 38 Version : 6.6.0 Release : 2.fc38 URL : https://github.com/keylime/keylime Summary : Open source TPM software for Bootstrapping and Maintaining Trust Description : Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. -------------------------------------------------------------------------------- Update Information: Backport upstream fixes - Fixes: CVE-2023-38200 - Fixes: CVE-2023-38201 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 30 2023 Sergio Correia - 6.6.0-2 - Backport upstream fixes -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-ed9922536e' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives:https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Fedora 38 has released an important update for Keylime, fixing major security issues labeled CVE-2023-38200 and CVE-2023-38201. Users must apply this patch to ensure system reliability. Fedora Update, Keylime Software, Remote Attestation, TPM Solution. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 12, 2023 Critical Fedora
Banner 3 1028x280 1708121785 1771599793
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryDoSRed Hat Enterprise Linux

Red Hat Enterprise Linux 9 RHSA-2023-5080-01 Moderate Keylime Update

An update for keylime is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Moderate: keylime security update Advisory ID: RHSA-2023:5080-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:5080 Issue date: 2023-09-12 CVE Names: CVE-2023-38200 CVE-2023-38201 ===================================================================== 1. Summary: An update for keylime is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. Security Fix(es): * keylime: registrar is subject to a DoS against SSL connections (CVE-2023-38200) * Keylime: challenge-response protocol bypass during agent registration (CVE-2023-38201) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2222692 - CVE-2023-38200 keylime:registrar is subject to a DoS against SSL connections 2222693 - CVE-2023-38201 Keylime: challenge-response protocol bypass during agent registration 6. Package List: Red Hat Enterprise Linux AppStream (v. 9): Source: keylime-6.5.2-6.el9_2.src.rpm aarch64: keylime-6.5.2-6.el9_2.aarch64.rpm keylime-base-6.5.2-6.el9_2.aarch64.rpm keylime-registrar-6.5.2-6.el9_2.aarch64.rpm keylime-tenant-6.5.2-6.el9_2.aarch64.rpm keylime-verifier-6.5.2-6.el9_2.aarch64.rpm python3-keylime-6.5.2-6.el9_2.aarch64.rpm noarch: keylime-selinux-6.5.2-6.el9_2.noarch.rpm ppc64le: keylime-6.5.2-6.el9_2.ppc64le.rpm keylime-base-6.5.2-6.el9_2.ppc64le.rpm keylime-registrar-6.5.2-6.el9_2.ppc64le.rpm keylime-tenant-6.5.2-6.el9_2.ppc64le.rpm keylime-verifier-6.5.2-6.el9_2.ppc64le.rpm python3-keylime-6.5.2-6.el9_2.ppc64le.rpm s390x: keylime-6.5.2-6.el9_2.s390x.rpm keylime-base-6.5.2-6.el9_2.s390x.rpm keylime-registrar-6.5.2-6.el9_2.s390x.rpm keylime-tenant-6.5.2-6.el9_2.s390x.rpm keylime-verifier-6.5.2-6.el9_2.s390x.rpm python3-keylime-6.5.2-6.el9_2.s390x.rpm x86_64: keylime-6.5.2-6.el9_2.x86_64.rpm keylime-base-6.5.2-6.el9_2.x86_64.rpm keylime-registrar-6.5.2-6.el9_2.x86_64.rpm keylime-tenant-6.5.2-6.el9_2.x86_64.rpm keylime-verifier-6.5.2-6.el9_2.x86_64.rpm python3-keylime-6.5.2-6.el9_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2023-38200 https://access.redhat.com/security/cve/CVE-2023-38201 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIcBAEBCAAGBQJlAINJAAoJENzjgjWX9erE59cP/RFf4gSKE5W1ar8Yy+/89EcT GupcC9vnwiLF92vcCWo6LbC7hWUxVkeJTpOI9MKNfNy4bMuRO287MVLu8oLskuhS zhV6A09qbxFCzocBi/J4P4QO/2QDqI1mmz5mHVPstsbRjnUZg7fxiQv583ygCb/j 8JDz365XI8fWRhZg3X4wskYbd1D0LLT1n2lJKKtcU9jEMEKg4J5hDJLs2WpFRpsd tb54ufNiDkrOS9V5hzFdVjGZ8Kmez5G/Tj3s/Y2mZvRSzemmDv9ayPjotsLdfV9w 4FBwVCZr1wbxX4KnWDXM1VrObwy6gUq05WQDhTrzxXUC2i1VeQCPUEyCObY+jOFd QyibRKLssQQTBfz4ByoL3eRLpqDi8d58DR40R/lQSQuZ+u/42l20T8GifZqT0GHD WB5aie4BtKY1ayozq3PUda2hNfVxQfzGw1CXidiKN/gB1si6EWR0CCHv4lQ7ttiV n5l9IXbdw3FQVudFwBqUI8fxeLdDWypFWr+ld4LnzOb9n3YYXrL5Ba1J2A0cBfBT 8xpfxpkuWyBrCDDGP6Alq2WdQrHCIsR4B4ncIbPzdyrM1RXJjEsXkTBc7w6tRhXZ G+N4kMsFJyux/FY5tisI2c2nou0hWRNfGaqXBssFDbkdrpoRfTmGM9mNAJHqyfji q13+zKgAfEACx42A5+CP =Rfhb -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Critical security patch issued for Red Hat Enterprise Linux 9 classified as Moderate severity. Full disclosure of threats and remediation steps provided.. Red Hat Enterprise Linux Security, Keylime Update, Moderate Security Advisory. . LinuxSecurity.com Team

Calendar 2 Sep 12, 2023 Red Hat
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalFedora

Fedora 34: 2022-f9ace23a78 Critical: Keylime Update for Trusted Boot

* Updating for Keylime release v6.4.0 * Fixes CVE-2022-1053. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-f9ace23a78 2022-05-13 01:42:38.183652 --------------------------------------------------------------------------------Name : keylime Product : Fedora 34 Version : 6.4.0 Release : 1.fc34 URL : https://github.com/keylime/keylime Summary : Open source TPM software for Bootstrapping and Maintaining Trust Description : Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. --------------------------------------------------------------------------------Update Information: * Updating for Keylime release v6.4.0 * Fixes CVE-2022-1053 --------------------------------------------------------------------------------ChangeLog: * Wed May 4 2022 Sergio Correia - 6.4.0-1 - Updating for Keylime release v6.4.0 --------------------------------------------------------------------------------References: [ 1 ] Bug #2065024 - CVE-2022-1053 keylime: Tenant and Verifier might not use the same registrar data https://bugzilla.redhat.com/show_bug.cgi?id=2065024 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-f9ace23a78' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Keylime version 6.4.0 has been launched for Fedora 34, incorporating fixes for CVE-2022-1053 to bolster security protocols.. Fedora Update, Keylime Software, Trust Management, Remote Attestation, Open Source Security. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 12, 2022 Critical Fedora
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraremote attestation

Fedora 35 KEYLIME-2022-7c9173843a Critical: Remote Attestation Fixes

* Updating for Keylime release v6.4.0 * Fixes CVE-2022-1053. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-7c9173843a 2022-05-13 01:35:31.848642 --------------------------------------------------------------------------------Name : keylime Product : Fedora 35 Version : 6.4.0 Release : 1.fc35 URL : https://github.com/keylime/keylime Summary : Open source TPM software for Bootstrapping and Maintaining Trust Description : Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. --------------------------------------------------------------------------------Update Information: * Updating for Keylime release v6.4.0 * Fixes CVE-2022-1053 --------------------------------------------------------------------------------ChangeLog: * Wed May 4 2022 Sergio Correia - 6.4.0-1 - Updating for Keylime release v6.4.0 --------------------------------------------------------------------------------References: [ 1 ] Bug #2065024 - CVE-2022-1053 keylime: Tenant and Verifier might not use the same registrar data https://bugzilla.redhat.com/show_bug.cgi?id=2065024 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-7c9173843a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Keylime version 6.4.0 launched for Fedora 35, addressing critical concerns linked to remote attestation and trust governance.. Fedora Keylime Update, Remote Attestation Tool, TPM Software Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 12, 2022 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalFedora

Fedora 36: 748fda10e7 critical: keylime remote attestation fix

* Updating for Keylime release v6.4.0 * Fixes CVE-2022-1053. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-748fda10e7 2022-05-12 20:24:55.994228 --------------------------------------------------------------------------------Name : keylime Product : Fedora 36 Version : 6.4.0 Release : 1.fc36 URL : https://github.com/keylime/keylime Summary : Open source TPM software for Bootstrapping and Maintaining Trust Description : Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. --------------------------------------------------------------------------------Update Information: * Updating for Keylime release v6.4.0 * Fixes CVE-2022-1053 --------------------------------------------------------------------------------ChangeLog: * Wed May 4 2022 Sergio Correia - 6.4.0-1 - Updating for Keylime release v6.4.0 --------------------------------------------------------------------------------References: [ 1 ] Bug #2065024 - CVE-2022-1053 keylime: Tenant and Verifier might not use the same registrar data https://bugzilla.redhat.com/show_bug.cgi?id=2065024 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-748fda10e7' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . The latest Fedora upgrade brings Keylime to version 6.4.0, rectifying CVE-2022-1053 to improve remote attestation and bolster integrity assessments.. Fedora 36, Keylime Software, Remote Boot Attestation, TPM, Integrity Measurement. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 12, 2022 Critical Fedora
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 34 Keylime 6.3.0 Security Advisory: Multiple Issues Resolved

Update to keylime v6.3.0 Fixes the following security advisories: - https://github.com/keylime/keylime/security/advisories/GHSA-2m39-75g9-ff5r - https://github.com/keylime/keylime/security/advisories/GHSA-wj36-qcfg-5j52 - https://github.com/keylime/keylime/security/advisories/GHSA-87gh-qc28-j9mm - https://github.com/keylime/keylime/security/advisories/GHSA-9r9r-f8xc-m875 -. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-dbb274913a 2022-02-04 01:20:59.298826 --------------------------------------------------------------------------------Name : keylime Product : Fedora 34 Version : 6.3.0 Release : 2.fc34 URL : https://github.com/keylime/keylime Summary : Open source TPM software for Bootstrapping and Maintaining Trust Description : Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. --------------------------------------------------------------------------------Update Information: Update to keylime v6.3.0 Fixes the following security advisories: -https://github.com/keylime/keylime/security/advisories/GHSA-2m39-75g9-ff5r -https://github.com/keylime/keylime/security/advisories/GHSA-wj36-qcfg-5j52 -https://github.com/keylime/keylime/security/advisories/GHSA-87gh-qc28-j9mm -https://github.com/keylime/keylime/security/advisories/GHSA-9r9r-f8xc-m875 -https://github.com/keylime/keylime/security/advisories/GHSA-6xx7-m45w-76m2 --------------------------------------------------------------------------------ChangeLog: * Thu Jan 27 2022 Sergio Correia - 6.3.0-2 - Fix permissions of config file * Thu Jan 27 2022 Sergio Correia - 6.3.0-1 - Updating for Keylime release v6.3.0 --------------------------------------------------------------------------------References: [ 1 ] Bug #2048630 - CVE-2021-43310 CVE-2022-23948 CVE-2022-23949 CVE-2022-23950 CVE-2022-23951 CVE-2022-23952 keylime: Multiple security vulnerabilitiesfixed in keylime 6.3.x [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2048630 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-dbb274913a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . The version 6.3.0 update of Keylime addresses various security vulnerabilities and improves the remote attestation security features in Fedora 34.. keylime Update,Bootstrapping Trust,Fedora 34 security. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 03, 2022 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderateFedora

Fedora 32: 2021-11e4ae96a7 Moderate: Keylime 6.0.0 Remote Attestation Fix

Keylime 6.0.0 release. Contains fix CVE-2021-3406. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-11e4ae96a7 2021-02-24 20:43:56.301950 --------------------------------------------------------------------------------Name : keylime Product : Fedora 32 Version : 6.0.0 Release : 1.fc32 URL : https://github.com/keylime/keylime Summary : Open source TPM software for Bootstrapping and Maintaining Trust Description : Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. --------------------------------------------------------------------------------Update Information: Keylime 6.0.0 release. Contains fix CVE-2021-3406 --------------------------------------------------------------------------------ChangeLog: * Wed Feb 24 2021 Luke Hinds 6.0.0-1 - Updating for Keylime release v6.0.0 * Tue Feb 2 2021 Luke Hinds 5.8.1-1 - Updating for Keylime release v5.8.1 * Tue Jan 26 2021 Fedora Release Engineering - 5.8.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-11e4ae96a7' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct:https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . The latest update of Keylime 6.0.0 for Fedora addresses the security vulnerability CVE-2021-3406, improving the capabilities for remote attestation.. Keylime Release,Fedora Update,Remote Attestation,TPM Software,Security Fix. . LinuxSecurity.com Team

Calendar 2 Feb 24, 2021 Fedora
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":547,"type":"x","order":1,"pct":78.48,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.88,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.34,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here