libtpms v0.10.1 & 0.9.7 & 0.8.10 release
4 views
Skip to first unread message
Stefan Berger
Jun 10, 2025, 2:33:51 PMJun 10
to libtpms-...@googlegroups.com
Hi!
I just released libtpms v0.10.1 with the following changes:
version 0.10.1:
- tpm2: Fix potential out-of-bound access & abort due to HMAC signing
issue (CVE-2025-49133)
- tpm2: fix build for LibreSSL 4.1.0
- tpm2: In CheckLockedOut replace TPM_RC_RETRY with TPM_RC_SUCCESS
- tpm2: Fix bugs in RuntimeProfileDedupStrItems
- tpm2 + test: Make it compilable on Debian GNU Hurd
- tpm2: Add asserts to silence compiler warning due to
-Wstringop-overflow=
- tpm2: Add padding to OBJECT for 32bit targets
The other release fix the same CVE and their descriptions are here:
- https://github.com/stefanberger/libtpms/releases/tag/v0.9.7
- https://github.com/stefanberger/libtpms/releases/tag/v0.8.10
- https://github.com/stefanberger/libtpms/releases/tag/v0.7.12
Regards,
Stefan
I just released libtpms v0.10.1 with the following changes:
version 0.10.1:
- tpm2: Fix potential out-of-bound access & abort due to HMAC signing
issue (CVE-2025-49133)
- tpm2: fix build for LibreSSL 4.1.0
- tpm2: In CheckLockedOut replace TPM_RC_RETRY with TPM_RC_SUCCESS
- tpm2: Fix bugs in RuntimeProfileDedupStrItems
- tpm2 + test: Make it compilable on Debian GNU Hurd
- tpm2: Add asserts to silence compiler warning due to
-Wstringop-overflow=
- tpm2: Add padding to OBJECT for 32bit targets
The other release fix the same CVE and their descriptions are here:
- https://github.com/stefanberger/libtpms/releases/tag/v0.9.7
- https://github.com/stefanberger/libtpms/releases/tag/v0.8.10
- https://github.com/stefanberger/libtpms/releases/tag/v0.7.12
Regards,
Stefan
Reply all
Reply to author
Forward
0 new messages