tpm2-tss-3.2.2-2.el9
エラータID: AXSA:2023-6873:02
リリース日:
2023/12/12 Tuesday - 02:43
題名:
tpm2-tss-3.2.2-2.el9
影響のあるチャネル:
MIRACLE LINUX 9 for x86_64
Severity:
Low
Description:
以下項目について対処しました。
[Security Fix]
- tpm2-tss には、メモリ領域の範囲外アクセスの問題があるため、
ローカルの攻撃者により、任意のコードの実行を可能とする脆弱性
が存在します。(CVE-2023-22745)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2023-22745
tpm2-tss is an open source software implementation of the Trusted Computing Group (TCG) Trusted Platform Module (TPM) 2 Software Stack (TSS2). In affected versions `Tss2_RC_SetHandler` and `Tss2_RC_Decode` both index into `layer_handler` with an 8 bit layer number, but the array only has `TPM2_ERROR_TSS2_RC_LAYER_COUNT` entries, so trying to add a handler for higher-numbered layers or decode a response code with such a layer number reads/writes past the end of the buffer. This Buffer overrun, could result in arbitrary code execution. An example attack would be a MiTM bus attack that returns 0xFFFFFFFF for the RC. Given the common use case of TPM modules an attacker must have local access to the target machine with local system privileges which allows access to the TPM system. Usually TPM access requires administrative privilege.
tpm2-tss is an open source software implementation of the Trusted Computing Group (TCG) Trusted Platform Module (TPM) 2 Software Stack (TSS2). In affected versions `Tss2_RC_SetHandler` and `Tss2_RC_Decode` both index into `layer_handler` with an 8 bit layer number, but the array only has `TPM2_ERROR_TSS2_RC_LAYER_COUNT` entries, so trying to add a handler for higher-numbered layers or decode a response code with such a layer number reads/writes past the end of the buffer. This Buffer overrun, could result in arbitrary code execution. An example attack would be a MiTM bus attack that returns 0xFFFFFFFF for the RC. Given the common use case of TPM modules an attacker must have local access to the target machine with local system privileges which allows access to the TPM system. Usually TPM access requires administrative privilege.
追加情報:
N/A
ダウンロード:
SRPMS
- tpm2-tss-3.2.2-2.el9.src.rpm
MD5: e9e77d041b52e2b62fabaf9135fb4194
SHA-256: 0ed5ac21bac8e014f987c47f4de882dfec51ca16a32df892ce41e4f453b2d8e3
Size: 1.58 MB
Asianux Server 9 for x86_64
- tpm2-tss-3.2.2-2.el9.i686.rpm
MD5: 964497d995f32987acd6059099ca4d03
SHA-256: 1c6c4ee2c88204b193e1ac8a19bbf97a05d33161fdf5c226228e918803354047
Size: 512.99 kB - tpm2-tss-3.2.2-2.el9.x86_64.rpm
MD5: 4f52178dd7751c398b1ac85014213ae9
SHA-256: abc1feccd0be05d3d39fd5668ad0a6ef74b2a7e307e94218d86717c2383a0762
Size: 591.11 kB - tpm2-tss-devel-3.2.2-2.el9.i686.rpm
MD5: 589ac9b5da77f937529a20b63aa01e2c
SHA-256: 5e60b931b61d232e786fa2a2fcd2959077df717b80974348cdfa4e8d22e82e23
Size: 309.83 kB - tpm2-tss-devel-3.2.2-2.el9.x86_64.rpm
MD5: 13a5826877fd91d61d1e1b78ec7c8e2d
SHA-256: 8e965ce169590a67555a0746acc02b44d6214668c6af3ac364e5980f0addd3f3
Size: 309.87 kB
English