[ubuntu/oracular-updates] libtpms 0.9.3-0ubuntu4.24.10.1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Thu Jul 3 19:28:22 UTC 2025
libtpms (0.9.3-0ubuntu4.24.10.1) oracular-security; urgency=medium
* SECURITY UPDATE: Out-of-bounds access, denial of service
- debian/patches/CVE-2025-49133.patch: Fix potential out-of-
bound access & abort due to HMAC signing issue in tpm2/CryptUtil.c
- CVE-2025-49133
* debian/patches/do_not_inline_makeiv.patch: updated patch to set noinline
attribute for all arch's instead of just ppc64 to fix compiler warning
in tpm2/AlgorithmTests.c
* debian/patches/fix_ftbfs_crpytomacend.patch: add assertions to quiet
compiler warning in tpm2/crypto/openssl/CryptCmacEnd.c
Date: 2025-07-02 23:05:17.728968+00:00
Changed-By: Elise Hlady <elise.hlady at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/libtpms/0.9.3-0ubuntu4.24.10.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the oracular-changes
mailing list