pool/libtpms
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
45 Commits 1 Branch 0 Tags 81 KiB
9be3928e74
Commit Graph

19 Commits

Author SHA256 Message Date
Marcus Meissner
b6b06fac5f Accepting request 1134474 from home:msmeissn:branches:security 
- 0001-tpm2-Check-size-of-buffer-before-accessing-it-CVE-20.patch: upstreamed
- Used in SLE:
  0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
  0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
  0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch

OBS-URL: https://build.opensuse.org/request/show/1134474
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=41
 2023-12-27 15:05:42 +00:00
Marcus Meissner
7792fda5b1 * CVE-2023-1018: tpm2: Fixed out of bounds read in CryptParameterDecryption (bsc#1206023) 
* CVE-2023-1017: tpm2: Fixed out of bounds write in CryptParameterDecryption (bsc#1206022)

OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=39
 2023-03-07 07:54:42 +00:00
Marcus Meissner
4031a0c9b9 Accepting request 1069708 from home:aplanas:branches:security 
- Update to 0.9.6:
  * tpm2: Check size of buffer before accessing it (CVE-2023-1017 & CVE-2023-1018)

OBS-URL: https://build.opensuse.org/request/show/1069708
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=38
 2023-03-07 07:49:19 +00:00
Marcus Meissner
d2855e28e8 Accepting request 1039771 from home:dirkmueller:Factory 
- update to 0.9.5:
  * tpm2: Do not set RSA_FLAG_NO_BLINDING on RSA keys anymore
  * tpm2: Fix a potential overflow expression (coverity)
  * tpm2: Fix size check in CryptSecretDecrypt
  * tpm: #undef printf in case it is #define'd (OSS-Fuzz)
  * tpm2: Check return code of BN_div()
  * tpm2: Initialize variables due to gcc complaint (s390x, false positive)
  * tpm12: Initialize variables due to gcc complaint (s390x, false positive)
  * build-sys: Fix configure script to support _FORTIFY_SOURCE=3

OBS-URL: https://build.opensuse.org/request/show/1039771
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=36
 2022-12-05 09:26:56 +00:00
Marcus Meissner
f8ab61146f Accepting request 1038171 from home:pgajdos 
- fix build for ppc64le: use -Wl,--no-as-needed in check-local
  [bsc#1204556]

OBS-URL: https://build.opensuse.org/request/show/1038171
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=34
 2022-11-25 12:36:24 +00:00
Marcus Meissner
e4822e6c4b Accepting request 1030434 from home:msmeissn:branches:security 
- Fixed CVE-2021-3623 (bsc#1187767)

OBS-URL: https://build.opensuse.org/request/show/1030434
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=32
 2022-10-25 13:45:00 +00:00
Marcus Meissner
a189fe5a91 Accepting request 968240 from home:dirkmueller:Factory 
- update to 0.9.3:
  * build-sys: Add probing for -fstack-protector
  * tpm2: Do not call EVP_PKEY_CTX_set0_rsa_oaep_label() for label of size
  * (OSSL 3)
  * tpm2: When writing state initialize s_ContextSlotMask if not set

OBS-URL: https://build.opensuse.org/request/show/968240
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=30
 2022-04-11 07:24:27 +00:00
Marcus Meissner
3226d3caae Accepting request 938273 from home:susnux:branches:security 
Update to version 0.9.1

OBS-URL: https://build.opensuse.org/request/show/938273
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=29
 2021-12-10 09:13:17 +00:00
Marcus Meissner
5e1c966304 Accepting request 915306 from home:pgajdos 
- security update
- added patches
  fix CVE-2021-3746 [bsc#1189935], out-of-bounds access via specially crafted TPM 2 command packets
  + libtpms-CVE-2021-3746.patch

OBS-URL: https://build.opensuse.org/request/show/915306
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=28
 2021-09-10 13:22:37 +00:00
Marcus Meissner
83310af55f Accepting request 910606 from home:gmbr3:Active 
- Update to version 0.8.4:
  * Reset too large size indicators in TPM2B to avoid access
    beyond buffer
  * Restore original value in buffer if unmarshalled one was
    illegal

OBS-URL: https://build.opensuse.org/request/show/910606
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=27
 2021-08-09 08:47:20 +00:00
Marcus Meissner
3b46b43aa0 Accepting request 886589 from home:gary_lin:branches:security 
- Update to version 0.8.2
  * tpm2: rev155: Add new RsaAdjustPrimeCandidate code but do
    not use (bsc#1184939 CVE-2021-3505)
  * tpm2: Activate SEED_COMPAT_LEVEL_RSA_PRIME_ADJUST_FIX
    (bsc#1184939 CVE-2021-3505)

OBS-URL: https://build.opensuse.org/request/show/886589
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=25
 2021-04-19 14:15:21 +00:00
Marcus Meissner
15458222e5 Accepting request 880005 from home:gary_lin:branches:security 
- Update to version 0.7.7
  * CryptSym: fix AES output IV (bsc#1183729, CVE-2021-3446)
  * tpm2: Fix public key context save due to ANY_OBJECT_Marshal usage
  * tpm2: Address some Coverity issues (false positives)
  * tpm1.2: Backported ASAN/UBSAN related fixes
  * tpm2: Return properly sized array for b parameter for NIST P521
    (HLK)
  * tpm2: Addressed issues detected by UBSAN
  * tpm2: Addressed issues detected by cppcheck (false positives)

OBS-URL: https://build.opensuse.org/request/show/880005
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=23
 2021-03-19 07:40:53 +00:00
Marcus Meissner
f53e2de3f9 Accepting request 850056 from home:gary_lin:branches:security 
- Update to version 0.7.4
  * Addressed potential constant-time related issues in TPM 1.2 and
    TPM 2 code
    TPM 1.2: RSA decryption
    TPM 2: EcSchnorr and EcSM2 signatures; Ecsda is handled by OpenSSL
  * Fixed some compilation issues

OBS-URL: https://build.opensuse.org/request/show/850056
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=21
 2020-11-23 08:03:48 +00:00
Marcus Meissner
6199663c69 Accepting request 822315 from home:kailiu:branches:security 
Update to version 0.7.3. Other minor changes to the spec file were done automatically by the format spec service.

OBS-URL: https://build.opensuse.org/request/show/822315
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=19
 2020-07-23 08:15:48 +00:00
Marcus Meissner
e94ef42ba6 Accepting request 728463 from home:gary_lin:branches:security 
Update to version 0.7.0

OBS-URL: https://build.opensuse.org/request/show/728463
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=17
 2019-09-09 12:39:29 +00:00
Marcus Meissner
fed6c438fc Accepting request 669009 from home:gary_lin:branches:security 
Update to version 0.6.0 and enable TPM2 support

OBS-URL: https://build.opensuse.org/request/show/669009
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=15
 2019-02-13 17:01:49 +00:00
Marcus Meissner
cf3e340b01 Accepting request 566607 from home:vitezslav_cizek:branches:security 
- Update to version 0.6.0-dev1
  * no upstream changelog
  * fix build with openssl 1.1 (bsc#1074801)
- fix rpm group

OBS-URL: https://build.opensuse.org/request/show/566607
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=13
 2018-01-22 16:25:33 +00:00
Marcus Meissner
b81b72912b Accepting request 292200 from home:posophe:branches:security 
update

OBS-URL: https://build.opensuse.org/request/show/292200
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=11
 2015-03-21 12:07:02 +00:00
Marcus Meissner
f6fc98935e - import 0.5.1 
- software TPM driver library for hooking into QEMU

OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=1
 2014-01-14 14:53:17 +00:00