Уязвимость репозитория для инструментов Trusted Platform Module tpm2-tools, связанная с раскрытием информации, позволяющая нарушителю получить доступ к конфиденциальным данным

A flaw was found in tpm2-tools in versions before 5.1.1 and before 4.3.2. tpm2_import used a fixed AES key for the inner wrapper, potentially allowing a MITM attacker to unwrap the inner portion and reveal the key being imported. The highest threat from this vulnerability is to data confidentiality.

A flaw was found in tpm2-tools in versions before 5.1.1 and before 4.3.2. tpm2_import used a fixed AES key for the inner wrapper, potentially allowing a MITM attacker to unwrap the inner portion and reveal the key being imported. The highest threat from this vulnerability is to data confidentiality.

A flaw was found in tpm2-tools in versions before 5.1.1 and before 4.3.2. tpm2_import used a fixed AES key for the inner wrapper, potentially allowing a MITM attacker to unwrap the inner portion and reveal the key being imported. The highest threat from this vulnerability is to data confidentiality.

A flaw was found in tpm2-tools in versions before 5.1.1 and before 4.3 ...

Security update for tpm2.0-tools

Security update for tpm2.0-tools

Security update for tpm2.0-tools

Security update for tpm2.0-tools

Moderate: tpm2-tools security and enhancement update

A flaw was found in tpm2-tools in versions before 5.1.1 and before 4.3.2. tpm2_import used a fixed AES key for the inner wrapper, potentially allowing a MITM attacker to unwrap the inner portion and reveal the key being imported. The highest threat from this vulnerability is to data confidentiality.

ELSA-2021-4413: tpm2-tools security and enhancement update (MODERATE)