swtpm v0.7.1, v0.6.2, and v0.5.3 released
6 views
Skip to first unread message
Stefan Berger
Feb 18, 2022, 2:47:35 PM2/18/22
to swtpm-a...@googlegroups.com
Hi!
I just released swtpm v0.7.1, v0.6.2 and v0.5.3 with the following
bugfixes. Thanks to everyone who helped find these bugs!
version 0.7.1:
- swtpm:
- Check header size indicator against expected size (CVE-2022-23645)
- swtpm_localca:
- Test for available issuercert before creating CA
version 0.6.2:
- swtpm:
- Check header size indicator against expected size (CVE-2022-23645)
- swtpm-localca:
- Test for available issuercert before creating CA
- swtpm_setup:
- Report stderr as returned by external tool (swtpm-localcal)
- Fix exit code on error to be '1'.
version 0.5.3:
- swtpm:
- Check header size indicator against expected size (CVE-2022-23645)
- Fix --print-capabilities for 'swtpm chardev'
- swtpm_localca:
- Test for available issuercert before creating CA
- swtpm_cert:
- Rename deprecated libtasn1 types
- man pages:
- Update the doc of the flag to connect to TPM via UnixIO socket
- build-sys:
- Use -DOPENSSL_SUPPRESS_DEPRECATED to suppress deprecated API warnings
(OSSL 3)
- Fix Makefile issue with multiple .PHONY
- tests:
- Allow volatile state file >= 9000 bytes in test_tpm2_migration_key
- Travis:
- Stop using ASAN for swtpm since one test case fails (with 0.5.x)
Stefan
I just released swtpm v0.7.1, v0.6.2 and v0.5.3 with the following
bugfixes. Thanks to everyone who helped find these bugs!
version 0.7.1:
- swtpm:
- Check header size indicator against expected size (CVE-2022-23645)
- swtpm_localca:
- Test for available issuercert before creating CA
version 0.6.2:
- swtpm:
- Check header size indicator against expected size (CVE-2022-23645)
- swtpm-localca:
- Test for available issuercert before creating CA
- swtpm_setup:
- Report stderr as returned by external tool (swtpm-localcal)
- Fix exit code on error to be '1'.
version 0.5.3:
- swtpm:
- Check header size indicator against expected size (CVE-2022-23645)
- Fix --print-capabilities for 'swtpm chardev'
- swtpm_localca:
- Test for available issuercert before creating CA
- swtpm_cert:
- Rename deprecated libtasn1 types
- man pages:
- Update the doc of the flag to connect to TPM via UnixIO socket
- build-sys:
- Use -DOPENSSL_SUPPRESS_DEPRECATED to suppress deprecated API warnings
(OSSL 3)
- Fix Makefile issue with multiple .PHONY
- tests:
- Allow volatile state file >= 9000 bytes in test_tpm2_migration_key
- Travis:
- Stop using ASAN for swtpm since one test case fails (with 0.5.x)
Stefan
Reply all
Reply to author
Forward
0 new messages