3039b9d8a0
Accepting request 1301063 from security
...
- Allow for %is_opensuse to be unset, following up to
https://src.suse.de/products/SLFO/pulls/204 (bsc#1248486). (forwarded request 1300952 from gleidi)
OBS-URL: https://build.opensuse.org/request/show/1301063
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=23
2025-08-25 18:36:30 +00:00
5215d7e8c8
Accepting request 1300952 from home:gleidi:branches:security
...
- Allow for %is_opensuse to be unset, following up to
https://src.suse.de/products/SLFO/pulls/204 (bsc#1248486).
OBS-URL: https://build.opensuse.org/request/show/1300952
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=51
2025-08-23 10:26:21 +00:00
7100badae6
Accepting request 1287565 from security
...
OBS-URL: https://build.opensuse.org/request/show/1287565
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=22
2025-06-23 12:50:32 +00:00
77f2dc5ec7
Accepting request 1286031 from home:dimstar:Factory
...
- Update to version 0.10.1:
* tpm2: Fix potential out-of-bound access & abort due to HMAC
signing issue (CVE-2025-49133).
* tpm2: fix build for LibreSSL 4.1.0.
* tpm2: In CheckLockedOut replace TPM_RC_RETRY with
TPM_RC_SUCCESS.
* tpm2: Fix bugs in RuntimeProfileDedupStrItems.
* tpm2 + test: Make it compilable on Debian GNU Hurd.
* tpm2: Add asserts to silence compiler warning due to
-Wstringop-overflow=.
* tpm2: Add padding to OBJECT for 32bit targets.
- Drop tpm2-Add-padding-to-OBJECT-for-32bit-targets.patch: fixed
upstream.
OBS-URL: https://build.opensuse.org/request/show/1286031
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=49
2025-06-21 13:40:09 +00:00
a9580f378a
Accepting request 1228778 from security
...
- Use gcc/g++-13 on Leap to fix the following failure:
"tpm2_setprofile.c:49:24: error: initializer element is not constant" (forwarded request 1228719 from manfred-h)
OBS-URL: https://build.opensuse.org/request/show/1228778
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=21
2024-12-08 10:36:31 +00:00
e3b88f9aad
Accepting request 1228719 from home:manfred-h:branches:security
...
- Use gcc/g++-13 on Leap to fix the following failure:
"tpm2_setprofile.c:49:24: error: initializer element is not constant"
OBS-URL: https://build.opensuse.org/request/show/1228719
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=47
2024-12-06 13:06:07 +00:00
89d23c205d
Accepting request 1228303 from security
...
- Add tpm2-Add-padding-to-OBJECT-for-32bit-targets.patch
- Update to 0.10.0:
* tpm2: Support for profiles: default-v1 & custom
* tpm2: Add new API call TPMLIB_SetProfile to enable user to set a
profile
* tpm2: Extende TPMLIB_GetInfo to return profiles-related info
* tpm2: Implemented crypto tests and restrictions on crypto related
to FIPS-140-3; can be enabled with profiles
* tpm2: Enable Camellia-192 and AES-192
* tpm2: Implement TPMLIB_WasManufactured API call
* tpm2: Fixes for issues detected by static analyzers
* tpm2: Use OpenSSL-based KDFe implementation if possible
* tpm2: Update to TPM 2 spec rev 183 (many changes)
* tpm2: Better support for OpenSSL 3.x
* tpm2: Use Carmichael function for RSA priv. exponent D (>= 2048
bits)
* tpm2: Fixes for CVE-2023-1017 and CVE-2023-1018
* tpm2: Fix of SignedCompareB().
- NOTE: This fix may result in backwards compatibility issues with PCR
policies used by TPM2_PolicyCounterTimer and TPM2_PolicyNV when
upgrading from v0.9 to v0.10. (forwarded request 1228299 from aplanas)
OBS-URL: https://build.opensuse.org/request/show/1228303
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=20
2024-12-05 16:05:18 +00:00
aa522252e3
Accepting request 1228299 from home:aplanas:branches:security
...
- Add tpm2-Add-padding-to-OBJECT-for-32bit-targets.patch
- Update to 0.10.0:
* tpm2: Support for profiles: default-v1 & custom
* tpm2: Add new API call TPMLIB_SetProfile to enable user to set a
profile
* tpm2: Extende TPMLIB_GetInfo to return profiles-related info
* tpm2: Implemented crypto tests and restrictions on crypto related
to FIPS-140-3; can be enabled with profiles
* tpm2: Enable Camellia-192 and AES-192
* tpm2: Implement TPMLIB_WasManufactured API call
* tpm2: Fixes for issues detected by static analyzers
* tpm2: Use OpenSSL-based KDFe implementation if possible
* tpm2: Update to TPM 2 spec rev 183 (many changes)
* tpm2: Better support for OpenSSL 3.x
* tpm2: Use Carmichael function for RSA priv. exponent D (>= 2048
bits)
* tpm2: Fixes for CVE-2023-1017 and CVE-2023-1018
* tpm2: Fix of SignedCompareB().
- NOTE: This fix may result in backwards compatibility issues with PCR
policies used by TPM2_PolicyCounterTimer and TPM2_PolicyNV when
upgrading from v0.9 to v0.10.
OBS-URL: https://build.opensuse.org/request/show/1228299
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=45
2024-12-04 12:48:14 +00:00
2623d574c7
revert
...
0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=44
2024-01-09 07:34:45 +00:00
a4a991ee5b
Accepting request 1137544 from home:msmeissn:branches:security
...
removed 0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
removed 0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
removed 0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch
OBS-URL: https://build.opensuse.org/request/show/1137544
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=43
2024-01-08 11:59:47 +00:00
bf55b82316
Accepting request 1135332 from security
...
- 0001-tpm2-Check-size-of-buffer-before-accessing-it-CVE-20.patch: upstreamed
- Used in SLE:
0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch (forwarded request 1134474 from msmeissn)
OBS-URL: https://build.opensuse.org/request/show/1135332
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=19
2024-01-03 11:27:23 +00:00
8289278e8a
Accepting request 1134474 from home:msmeissn:branches:security
...
- 0001-tpm2-Check-size-of-buffer-before-accessing-it-CVE-20.patch: upstreamed
- Used in SLE:
0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch
OBS-URL: https://build.opensuse.org/request/show/1134474
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=41
2023-12-27 15:05:42 +00:00
bda0abe0cd
Accepting request 1069859 from security
...
- Update to 0.9.6:
* CVE-2023-1018: tpm2: Fixed out of bounds read in CryptParameterDecryption (bsc#1206023)
* CVE-2023-1017: tpm2: Fixed out of bounds write in CryptParameterDecryption (bsc#1206022)
OBS-URL: https://build.opensuse.org/request/show/1069859
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=18
2023-03-08 13:51:27 +00:00
eb079e4169
* CVE-2023-1018: tpm2: Fixed out of bounds read in CryptParameterDecryption (bsc#1206023)
...
* CVE-2023-1017: tpm2: Fixed out of bounds write in CryptParameterDecryption (bsc#1206022)
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=39
2023-03-07 07:54:42 +00:00
43b8a52a33
Accepting request 1069708 from home:aplanas:branches:security
...
- Update to 0.9.6:
* tpm2: Check size of buffer before accessing it (CVE-2023-1017 & CVE-2023-1018)
OBS-URL: https://build.opensuse.org/request/show/1069708
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=38
2023-03-07 07:49:19 +00:00
bb5c35afdf
Accepting request 1040190 from security
...
- update to 0.9.5:
* tpm2: Do not set RSA_FLAG_NO_BLINDING on RSA keys anymore
* tpm2: Fix a potential overflow expression (coverity)
* tpm2: Fix size check in CryptSecretDecrypt
* tpm: #undef printf in case it is #define'd (OSS-Fuzz)
* tpm2: Check return code of BN_div()
* tpm2: Initialize variables due to gcc complaint (s390x, false positive)
* tpm12: Initialize variables due to gcc complaint (s390x, false positive)
* build-sys: Fix configure script to support _FORTIFY_SOURCE=3 (forwarded request 1039771 from dirkmueller)
OBS-URL: https://build.opensuse.org/request/show/1040190
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=17
2022-12-07 16:33:34 +00:00
32c7066ed4
Accepting request 1039771 from home:dirkmueller:Factory
...
- update to 0.9.5:
* tpm2: Do not set RSA_FLAG_NO_BLINDING on RSA keys anymore
* tpm2: Fix a potential overflow expression (coverity)
* tpm2: Fix size check in CryptSecretDecrypt
* tpm: #undef printf in case it is #define'd (OSS-Fuzz)
* tpm2: Check return code of BN_div()
* tpm2: Initialize variables due to gcc complaint (s390x, false positive)
* tpm12: Initialize variables due to gcc complaint (s390x, false positive)
* build-sys: Fix configure script to support _FORTIFY_SOURCE=3
OBS-URL: https://build.opensuse.org/request/show/1039771
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=36
2022-12-05 09:26:56 +00:00
74d7bd334b
Accepting request 1038201 from security
...
- fix build for ppc64le: use -Wl,--no-as-needed in check-local
[bsc#1204556] (forwarded request 1038171 from pgajdos)
OBS-URL: https://build.opensuse.org/request/show/1038201
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=16
2022-11-26 17:45:09 +00:00
2d0fd71aea
Accepting request 1038171 from home:pgajdos
...
- fix build for ppc64le: use -Wl,--no-as-needed in check-local
[bsc#1204556]
OBS-URL: https://build.opensuse.org/request/show/1038171
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=34
2022-11-25 12:36:24 +00:00
e5c902be34
Accepting request 1031153 from security
...
- Fixed CVE-2021-3623 (bsc#1187767) (forwarded request 1030434 from msmeissn)
OBS-URL: https://build.opensuse.org/request/show/1031153
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=15
2022-10-26 10:31:31 +00:00
6a386e4749
Accepting request 1030434 from home:msmeissn:branches:security
...
- Fixed CVE-2021-3623 (bsc#1187767)
OBS-URL: https://build.opensuse.org/request/show/1030434
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=32
2022-10-25 13:45:00 +00:00
6eb5586c57
Accepting request 968367 from security
...
- update to 0.9.3:
* build-sys: Add probing for -fstack-protector
* tpm2: Do not call EVP_PKEY_CTX_set0_rsa_oaep_label() for label of size
* (OSSL 3)
* tpm2: When writing state initialize s_ContextSlotMask if not set (forwarded request 968240 from dirkmueller)
OBS-URL: https://build.opensuse.org/request/show/968367
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=14
2022-04-13 19:03:59 +00:00
1f1fb3d247
Accepting request 968240 from home:dirkmueller:Factory
...
- update to 0.9.3:
* build-sys: Add probing for -fstack-protector
* tpm2: Do not call EVP_PKEY_CTX_set0_rsa_oaep_label() for label of size
* (OSSL 3)
* tpm2: When writing state initialize s_ContextSlotMask if not set
OBS-URL: https://build.opensuse.org/request/show/968240
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=30
2022-04-11 07:24:27 +00:00
f76ab73985
Accepting request 939041 from security
...
OBS-URL: https://build.opensuse.org/request/show/939041
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=13
2021-12-12 20:27:10 +00:00
d58ab12e04
Accepting request 938273 from home:susnux:branches:security
...
Update to version 0.9.1
OBS-URL: https://build.opensuse.org/request/show/938273
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=29
2021-12-10 09:13:17 +00:00
6244305009
Accepting request 917964 from security
...
OBS-URL: https://build.opensuse.org/request/show/917964
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=12
2021-09-13 14:24:29 +00:00
f47a4587dd
Accepting request 915306 from home:pgajdos
...
- security update
- added patches
fix CVE-2021-3746 [bsc#1189935], out-of-bounds access via specially crafted TPM 2 command packets
+ libtpms-CVE-2021-3746.patch
OBS-URL: https://build.opensuse.org/request/show/915306
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=28
2021-09-10 13:22:37 +00:00
Richard Brown
a55ab58d1b
Accepting request 910800 from security
...
OBS-URL: https://build.opensuse.org/request/show/910800
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=11
2021-08-12 07:01:02 +00:00
d71da595c0
Accepting request 910606 from home:gmbr3:Active
...
- Update to version 0.8.4:
* Reset too large size indicators in TPM2B to avoid access
beyond buffer
* Restore original value in buffer if unmarshalled one was
illegal
OBS-URL: https://build.opensuse.org/request/show/910606
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=27
2021-08-09 08:47:20 +00:00
152cba253c
Accepting request 886707 from security
...
- Update to version 0.8.2
* tpm2: rev155: Add new RsaAdjustPrimeCandidate code but do
not use (bsc#1184939 CVE-2021-3505)
* tpm2: Activate SEED_COMPAT_LEVEL_RSA_PRIME_ADJUST_FIX
(bsc#1184939 CVE-2021-3505) (forwarded request 886589 from gary_lin)
OBS-URL: https://build.opensuse.org/request/show/886707
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=10
2021-04-23 15:49:36 +00:00
b652959fa5
Accepting request 886589 from home:gary_lin:branches:security
...
- Update to version 0.8.2
* tpm2: rev155: Add new RsaAdjustPrimeCandidate code but do
not use (bsc#1184939 CVE-2021-3505)
* tpm2: Activate SEED_COMPAT_LEVEL_RSA_PRIME_ADJUST_FIX
(bsc#1184939 CVE-2021-3505)
OBS-URL: https://build.opensuse.org/request/show/886589
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=25
2021-04-19 14:15:21 +00:00
74ca36c4dc
Accepting request 880046 from security
...
- Update to version 0.7.7
* CryptSym: fix AES output IV (bsc#1183729, CVE-2021-3446)
* tpm2: Fix public key context save due to ANY_OBJECT_Marshal usage
* tpm2: Address some Coverity issues (false positives)
* tpm1.2: Backported ASAN/UBSAN related fixes
* tpm2: Return properly sized array for b parameter for NIST P521
(HLK)
* tpm2: Addressed issues detected by UBSAN
* tpm2: Addressed issues detected by cppcheck (false positives) (forwarded request 880005 from gary_lin)
OBS-URL: https://build.opensuse.org/request/show/880046
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=9
2021-03-24 15:09:49 +00:00
8287c41c07
Accepting request 880005 from home:gary_lin:branches:security
...
- Update to version 0.7.7
* CryptSym: fix AES output IV (bsc#1183729, CVE-2021-3446)
* tpm2: Fix public key context save due to ANY_OBJECT_Marshal usage
* tpm2: Address some Coverity issues (false positives)
* tpm1.2: Backported ASAN/UBSAN related fixes
* tpm2: Return properly sized array for b parameter for NIST P521
(HLK)
* tpm2: Addressed issues detected by UBSAN
* tpm2: Addressed issues detected by cppcheck (false positives)
OBS-URL: https://build.opensuse.org/request/show/880005
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=23
2021-03-19 07:40:53 +00:00
2bbc3b0f06
Accepting request 850101 from security
...
- Update to version 0.7.4
* Addressed potential constant-time related issues in TPM 1.2 and
TPM 2 code
TPM 1.2: RSA decryption
TPM 2: EcSchnorr and EcSM2 signatures; Ecsda is handled by OpenSSL
* Fixed some compilation issues (forwarded request 850056 from gary_lin)
OBS-URL: https://build.opensuse.org/request/show/850101
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=8
2020-11-23 14:48:57 +00:00
e905569922
Accepting request 850056 from home:gary_lin:branches:security
...
- Update to version 0.7.4
* Addressed potential constant-time related issues in TPM 1.2 and
TPM 2 code
TPM 1.2: RSA decryption
TPM 2: EcSchnorr and EcSM2 signatures; Ecsda is handled by OpenSSL
* Fixed some compilation issues
OBS-URL: https://build.opensuse.org/request/show/850056
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=21
2020-11-23 08:03:48 +00:00
2dff1d1fe4
Accepting request 822328 from security
...
Update to version 0.7.3. Other minor changes to the spec file were done automatically by the format spec service. (forwarded request 822315 from kailiu)
OBS-URL: https://build.opensuse.org/request/show/822328
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=7
2020-07-24 08:05:23 +00:00
ed2c4a1895
Accepting request 822315 from home:kailiu:branches:security
...
Update to version 0.7.3. Other minor changes to the spec file were done automatically by the format spec service.
OBS-URL: https://build.opensuse.org/request/show/822315
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=19
2020-07-23 08:15:48 +00:00
5d8d341604
Accepting request 729455 from security
...
OBS-URL: https://build.opensuse.org/request/show/729455
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=6
2019-09-09 21:58:15 +00:00
04f657f689
Accepting request 728463 from home:gary_lin:branches:security
...
Update to version 0.7.0
OBS-URL: https://build.opensuse.org/request/show/728463
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=17
2019-09-09 12:39:29 +00:00
c01fca0a5a
Accepting request 674674 from security
...
OBS-URL: https://build.opensuse.org/request/show/674674
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=5
2019-02-27 16:27:50 +00:00
3f538c2dfa
Accepting request 669009 from home:gary_lin:branches:security
...
Update to version 0.6.0 and enable TPM2 support
OBS-URL: https://build.opensuse.org/request/show/669009
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=15
2019-02-13 17:01:49 +00:00
ed9061e76f
Accepting request 568220 from security
...
OBS-URL: https://build.opensuse.org/request/show/568220
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=4
2018-01-24 14:29:18 +00:00
f58a669183
Accepting request 566607 from home:vitezslav_cizek:branches:security
...
- Update to version 0.6.0-dev1
* no upstream changelog
* fix build with openssl 1.1 (bsc#1074801)
- fix rpm group
OBS-URL: https://build.opensuse.org/request/show/566607
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=13
2018-01-22 16:25:33 +00:00
4788412431
Accepting request 292213 from security
...
- Update to version 0.5.2
* No entry for this release
- Update project home and download Urls
- Add autoconf, automake and libtool build require; the tarball
comes from git and configure script has to be generated
OBS-URL: https://build.opensuse.org/request/show/292213
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=3
2015-03-23 11:18:58 +00:00
1b3a2258cf
Accepting request 292200 from home:posophe:branches:security
...
update
OBS-URL: https://build.opensuse.org/request/show/292200
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=11
2015-03-21 12:07:02 +00:00
Stephan Kulow
e551e2047e
Accepting request 214259 from security
...
add for factory
OBS-URL: https://build.opensuse.org/request/show/214259
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=1
2014-01-22 22:19:36 +00:00
8826eced37
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=9
2014-01-17 15:09:10 +00:00
c5f7a09275
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=8
2014-01-15 10:11:13 +00:00
82b5d35b41
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=7
2014-01-15 10:02:46 +00:00
69a20bc97d
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=6
2014-01-15 09:46:21 +00:00
