Описание
Security update for tpm2.0-tools
This update for tpm2.0-tools fixes the following issues:
- CVE-2024-29038: Fixed arbitrary quote data validation by tpm2_checkquote (bsc#1223687).
- CVE-2024-29039: Fixed pcr selection value to be compared with the attest (bsc#1223689).
Список пакетов
Image SLES15-SP5-Azure-3P
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Azure-Basic
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Azure-Standard
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-BYOS-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-BYOS-EC2
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-BYOS-GCE
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-CHOST-BYOS-Aliyun
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-CHOST-BYOS-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-CHOST-BYOS-EC2
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-CHOST-BYOS-GCE
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-CHOST-BYOS-GDC
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-CHOST-BYOS-SAP-CCloud
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-EC2
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-GCE
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-HPC-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-HPC-BYOS-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-HPC-BYOS-EC2
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-HPC-BYOS-GCE
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Hardened-BYOS-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Hardened-BYOS-EC2
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Hardened-BYOS-GCE
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-EC2
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-GCE
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Server-5-0
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Server-5-0-Azure-llc
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Server-5-0-Azure-ltd
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Server-5-0-BYOS
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-EC2
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-GCE
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Server-5-0-EC2-llc
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Manager-Server-5-0-EC2-ltd
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Micro-5-5
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Micro-5-5-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Micro-5-5-BYOS
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Micro-5-5-BYOS-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Micro-5-5-BYOS-EC2
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Micro-5-5-BYOS-GCE
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Micro-5-5-EC2
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Micro-5-5-GCE
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-Azure-3P
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-BYOS-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-BYOS-EC2
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-BYOS-GCE
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-Hardened-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAP-Hardened-GCE
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAPCAL-Azure
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAPCAL-EC2
tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-SAPCAL-GCE
tpm2.0-tools-5.2-150400.6.3.1
SUSE Linux Enterprise Micro 5.3
tpm2.0-tools-5.2-150400.6.3.1
SUSE Linux Enterprise Micro 5.4
tpm2.0-tools-5.2-150400.6.3.1
SUSE Linux Enterprise Micro 5.5
tpm2.0-tools-5.2-150400.6.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
tpm2.0-tools-5.2-150400.6.3.1
openSUSE Leap 15.5
tpm2.0-tools-5.2-150400.6.3.1
openSUSE Leap Micro 5.3
tpm2.0-tools-5.2-150400.6.3.1
openSUSE Leap Micro 5.4
tpm2.0-tools-5.2-150400.6.3.1
Ссылки
- Link for SUSE-SU-2024:1636-1
- E-Mail link for SUSE-SU-2024:1636-1
- SUSE Security Ratings
- SUSE Bug 1223687
- SUSE Bug 1223689
- SUSE CVE CVE-2024-29038 page
- SUSE CVE CVE-2024-29039 page
Описание
tpm2-tools is the source repository for the Trusted Platform Module (TPM2.0) tools. A malicious attacker can generate arbitrary quote data which is not detected by `tpm2 checkquote`. This issue was patched in version 5.7.
Затронутые продукты
Image SLES15-SP5-Azure-3P:tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Azure-Basic:tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Azure-Standard:tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-BYOS-Azure:tpm2.0-tools-5.2-150400.6.3.1
Ссылки
- CVE-2024-29038
- SUSE Bug 1223687
Описание
tpm2 is the source repository for the Trusted Platform Module (TPM2.0) tools. This vulnerability allows attackers to manipulate tpm2_checkquote outputs by altering the TPML_PCR_SELECTION in the PCR input file. As a result, digest values are incorrectly mapped to PCR slots and banks, providing a misleading picture of the TPM state. This issue has been patched in version 5.7.
Затронутые продукты
Image SLES15-SP5-Azure-3P:tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Azure-Basic:tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-Azure-Standard:tpm2.0-tools-5.2-150400.6.3.1
Image SLES15-SP5-BYOS-Azure:tpm2.0-tools-5.2-150400.6.3.1
Ссылки
- CVE-2024-29039
- SUSE Bug 1223689