ALSA-2024:9424
- Source
- https://errata.almalinux.org/9/ALSA-2024-9424.html
- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2024:9424.json
- JSON Data
- https://api.osv.dev/v1/vulns/ALSA-2024:9424
- Related
- Published
- 2024-11-12T00:00:00Z
- Modified
- 2024-11-18T11:47:01Z
- Summary
- Low: tpm2-tools security update
- Details
-
The tpm2-tools packages add a set of utilities for management and utilization of Trusted Platform Module (TPM) 2.0 devices from user space.
Security Fix(es):
- tpm2-tools: arbitrary quote data may go undetected by tpm2_checkquote (CVE-2024-29038)
- tpm2-tools: pcr selection value is not compared with the attest (CVE-2024-29039)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
- References