pool/libtpms
SHA256
17
0
Fork 1
Code Issues Pull Requests Activity
55 Commits 3 Branches 0 Tags
factory
Commit Graph

25 Commits

Author SHA256 Message Date
Marcus Meissner
5215d7e8c8 Accepting request 1300952 from home:gleidi:branches:security 
- Allow for %is_opensuse to be unset, following up to
  https://src.suse.de/products/SLFO/pulls/204 (bsc#1248486).

OBS-URL: https://build.opensuse.org/request/show/1300952
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=51
 2025-08-23 10:26:21 +00:00
Marcus Meissner
77f2dc5ec7 Accepting request 1286031 from home:dimstar:Factory 
- Update to version 0.10.1:
  * tpm2: Fix potential out-of-bound access & abort due to HMAC
    signing issue (CVE-2025-49133).
  * tpm2: fix build for LibreSSL 4.1.0.
  * tpm2: In CheckLockedOut replace TPM_RC_RETRY with
    TPM_RC_SUCCESS.
  * tpm2: Fix bugs in RuntimeProfileDedupStrItems.
  * tpm2 + test: Make it compilable on Debian GNU Hurd.
  * tpm2: Add asserts to silence compiler warning due to
    -Wstringop-overflow=.
  * tpm2: Add padding to OBJECT for 32bit targets.
- Drop tpm2-Add-padding-to-OBJECT-for-32bit-targets.patch: fixed
  upstream.

OBS-URL: https://build.opensuse.org/request/show/1286031
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=49
 2025-06-21 13:40:09 +00:00
Marcus Meissner
e3b88f9aad Accepting request 1228719 from home:manfred-h:branches:security 
- Use gcc/g++-13 on Leap to fix the following failure:
  "tpm2_setprofile.c:49:24: error: initializer element is not constant"

OBS-URL: https://build.opensuse.org/request/show/1228719
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=47
 2024-12-06 13:06:07 +00:00
Marcus Meissner
aa522252e3 Accepting request 1228299 from home:aplanas:branches:security 
- Add tpm2-Add-padding-to-OBJECT-for-32bit-targets.patch
- Update to 0.10.0:
  * tpm2: Support for profiles: default-v1 & custom
  * tpm2: Add new API call TPMLIB_SetProfile to enable user to set a
    profile
  * tpm2: Extende TPMLIB_GetInfo to return profiles-related info
  * tpm2: Implemented crypto tests and restrictions on crypto related
    to FIPS-140-3; can be enabled with profiles
  * tpm2: Enable Camellia-192 and AES-192
  * tpm2: Implement TPMLIB_WasManufactured API call
  * tpm2: Fixes for issues detected by static analyzers
  * tpm2: Use OpenSSL-based KDFe implementation if possible
  * tpm2: Update to TPM 2 spec rev 183 (many changes)
  * tpm2: Better support for OpenSSL 3.x
  * tpm2: Use Carmichael function for RSA priv. exponent D (>= 2048
    bits)
  * tpm2: Fixes for CVE-2023-1017 and CVE-2023-1018
  * tpm2: Fix of SignedCompareB().
- NOTE: This fix may result in backwards compatibility issues with PCR
  policies used by TPM2_PolicyCounterTimer and TPM2_PolicyNV when
  upgrading from v0.9 to v0.10.

OBS-URL: https://build.opensuse.org/request/show/1228299
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=45
 2024-12-04 12:48:14 +00:00
Marcus Meissner
2623d574c7 revert 
0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
  0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
  0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch

OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=44
 2024-01-09 07:34:45 +00:00
Marcus Meissner
a4a991ee5b Accepting request 1137544 from home:msmeissn:branches:security 
removed 0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
  removed 0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
  removed 0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch

OBS-URL: https://build.opensuse.org/request/show/1137544
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=43
 2024-01-08 11:59:47 +00:00
Marcus Meissner
8289278e8a Accepting request 1134474 from home:msmeissn:branches:security 
- 0001-tpm2-Check-size-of-buffer-before-accessing-it-CVE-20.patch: upstreamed
- Used in SLE:
  0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
  0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
  0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch

OBS-URL: https://build.opensuse.org/request/show/1134474
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=41
 2023-12-27 15:05:42 +00:00
Marcus Meissner
eb079e4169 * CVE-2023-1018: tpm2: Fixed out of bounds read in CryptParameterDecryption (bsc#1206023) 
* CVE-2023-1017: tpm2: Fixed out of bounds write in CryptParameterDecryption (bsc#1206022)

OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=39
 2023-03-07 07:54:42 +00:00
Marcus Meissner
43b8a52a33 Accepting request 1069708 from home:aplanas:branches:security 
- Update to 0.9.6:
  * tpm2: Check size of buffer before accessing it (CVE-2023-1017 & CVE-2023-1018)

OBS-URL: https://build.opensuse.org/request/show/1069708
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=38
 2023-03-07 07:49:19 +00:00
Marcus Meissner
32c7066ed4 Accepting request 1039771 from home:dirkmueller:Factory 
- update to 0.9.5:
  * tpm2: Do not set RSA_FLAG_NO_BLINDING on RSA keys anymore
  * tpm2: Fix a potential overflow expression (coverity)
  * tpm2: Fix size check in CryptSecretDecrypt
  * tpm: #undef printf in case it is #define'd (OSS-Fuzz)
  * tpm2: Check return code of BN_div()
  * tpm2: Initialize variables due to gcc complaint (s390x, false positive)
  * tpm12: Initialize variables due to gcc complaint (s390x, false positive)
  * build-sys: Fix configure script to support _FORTIFY_SOURCE=3

OBS-URL: https://build.opensuse.org/request/show/1039771
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=36
 2022-12-05 09:26:56 +00:00
Marcus Meissner
2d0fd71aea Accepting request 1038171 from home:pgajdos 
- fix build for ppc64le: use -Wl,--no-as-needed in check-local
  [bsc#1204556]

OBS-URL: https://build.opensuse.org/request/show/1038171
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=34
 2022-11-25 12:36:24 +00:00
Marcus Meissner
6a386e4749 Accepting request 1030434 from home:msmeissn:branches:security 
- Fixed CVE-2021-3623 (bsc#1187767)

OBS-URL: https://build.opensuse.org/request/show/1030434
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=32
 2022-10-25 13:45:00 +00:00
Marcus Meissner
1f1fb3d247 Accepting request 968240 from home:dirkmueller:Factory 
- update to 0.9.3:
  * build-sys: Add probing for -fstack-protector
  * tpm2: Do not call EVP_PKEY_CTX_set0_rsa_oaep_label() for label of size
  * (OSSL 3)
  * tpm2: When writing state initialize s_ContextSlotMask if not set

OBS-URL: https://build.opensuse.org/request/show/968240
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=30
 2022-04-11 07:24:27 +00:00
Marcus Meissner
d58ab12e04 Accepting request 938273 from home:susnux:branches:security 
Update to version 0.9.1

OBS-URL: https://build.opensuse.org/request/show/938273
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=29
 2021-12-10 09:13:17 +00:00
Marcus Meissner
f47a4587dd Accepting request 915306 from home:pgajdos 
- security update
- added patches
  fix CVE-2021-3746 [bsc#1189935], out-of-bounds access via specially crafted TPM 2 command packets
  + libtpms-CVE-2021-3746.patch

OBS-URL: https://build.opensuse.org/request/show/915306
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=28
 2021-09-10 13:22:37 +00:00
Marcus Meissner
d71da595c0 Accepting request 910606 from home:gmbr3:Active 
- Update to version 0.8.4:
  * Reset too large size indicators in TPM2B to avoid access
    beyond buffer
  * Restore original value in buffer if unmarshalled one was
    illegal

OBS-URL: https://build.opensuse.org/request/show/910606
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=27
 2021-08-09 08:47:20 +00:00
Marcus Meissner
b652959fa5 Accepting request 886589 from home:gary_lin:branches:security 
- Update to version 0.8.2
  * tpm2: rev155: Add new RsaAdjustPrimeCandidate code but do
    not use (bsc#1184939 CVE-2021-3505)
  * tpm2: Activate SEED_COMPAT_LEVEL_RSA_PRIME_ADJUST_FIX
    (bsc#1184939 CVE-2021-3505)

OBS-URL: https://build.opensuse.org/request/show/886589
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=25
 2021-04-19 14:15:21 +00:00
Marcus Meissner
8287c41c07 Accepting request 880005 from home:gary_lin:branches:security 
- Update to version 0.7.7
  * CryptSym: fix AES output IV (bsc#1183729, CVE-2021-3446)
  * tpm2: Fix public key context save due to ANY_OBJECT_Marshal usage
  * tpm2: Address some Coverity issues (false positives)
  * tpm1.2: Backported ASAN/UBSAN related fixes
  * tpm2: Return properly sized array for b parameter for NIST P521
    (HLK)
  * tpm2: Addressed issues detected by UBSAN
  * tpm2: Addressed issues detected by cppcheck (false positives)

OBS-URL: https://build.opensuse.org/request/show/880005
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=23
 2021-03-19 07:40:53 +00:00
Marcus Meissner
e905569922 Accepting request 850056 from home:gary_lin:branches:security 
- Update to version 0.7.4
  * Addressed potential constant-time related issues in TPM 1.2 and
    TPM 2 code
    TPM 1.2: RSA decryption
    TPM 2: EcSchnorr and EcSM2 signatures; Ecsda is handled by OpenSSL
  * Fixed some compilation issues

OBS-URL: https://build.opensuse.org/request/show/850056
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=21
 2020-11-23 08:03:48 +00:00
Marcus Meissner
ed2c4a1895 Accepting request 822315 from home:kailiu:branches:security 
Update to version 0.7.3. Other minor changes to the spec file were done automatically by the format spec service.

OBS-URL: https://build.opensuse.org/request/show/822315
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=19
 2020-07-23 08:15:48 +00:00
Marcus Meissner
04f657f689 Accepting request 728463 from home:gary_lin:branches:security 
Update to version 0.7.0

OBS-URL: https://build.opensuse.org/request/show/728463
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=17
 2019-09-09 12:39:29 +00:00
Marcus Meissner
3f538c2dfa Accepting request 669009 from home:gary_lin:branches:security 
Update to version 0.6.0 and enable TPM2 support

OBS-URL: https://build.opensuse.org/request/show/669009
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=15
 2019-02-13 17:01:49 +00:00
Marcus Meissner
f58a669183 Accepting request 566607 from home:vitezslav_cizek:branches:security 
- Update to version 0.6.0-dev1
  * no upstream changelog
  * fix build with openssl 1.1 (bsc#1074801)
- fix rpm group

OBS-URL: https://build.opensuse.org/request/show/566607
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=13
 2018-01-22 16:25:33 +00:00
Marcus Meissner
1b3a2258cf Accepting request 292200 from home:posophe:branches:security 
update

OBS-URL: https://build.opensuse.org/request/show/292200
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=11
 2015-03-21 12:07:02 +00:00
Marcus Meissner
c51e47f384 - import 0.5.1 
- software TPM driver library for hooking into QEMU

OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=1
 2014-01-14 14:53:17 +00:00