Proxmox-Port/libtpms
1
0
Fork 0
mirror of https://github.com/stefanberger/libtpms synced 2026-01-02 22:47:41 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

rpm/debian: Add 0.8.10 entry in changelog

Browse Source 
Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
This commit is contained in:
Stefan Berger 2025-06-03 13:52:50 -04:00 committed by Stefan Berger
parent 273dba977a
commit f734971b47
3 changed files with 27 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
debian/changelog vendored
View File

@ -1,3 +1,14 @@
libtpms (0.8.10) RELEASED; urgency=high
* tpm2: Fix potential out-of-bound access & abort due to HMAC signing issue (CVE-2025-49133)
* tpm2: Remove assigned-to value to offset because it is unused (Coverity)
* Insert assert ensuring *buflen != BUFLEN_EMPTY_BUFFER (Coverity)
* tpm2: Address Coverity Issue by casting '1' before shift (CID 1470813)
* tpm2: Return TPM_RC_VALUE upon decryption failure
* tpm12: Replace include of engine.h with err.h
-- Stefan Berger <stefanb@linux.ibm.com> Tue, 10 Jun 2025 00:00:00 -0500
libtpms (0.8.9) RELEASED; urgency=high
* tpm2: Check size of buffer before accessing it (CVE-2023-1017 & -1018)

8
dist/libtpms.spec vendored
View File

@ -112,6 +112,14 @@ rm -f $RPM_BUILD_ROOT%{_libdir}/libtpms.la
%postun -p /sbin/ldconfig
%changelog
* Tue Jun 10 2025 Stefan Berger - 0.8.10-1
- tpm2: Fix potential out-of-bound access & abort due to HMAC signing issue (CVE-2025-49133)
- tpm2: Remove assigned-to value to offset because it is unused (Coverity)
- Insert assert ensuring *buflen != BUFLEN_EMPTY_BUFFER (Coverity)
- tpm2: Address Coverity Issue by casting '1' before shift (CID 1470813)
- tpm2: Return TPM_RC_VALUE upon decryption failure
- tpm12: Replace include of engine.h with err.h
* Tue Feb 28 2023 Stefan Berger - 0.8.9-1
- tpm2: Check size of buffer before accessing it (CVE-2023-1017 & -1018)

8
dist/libtpms.spec.in vendored
View File

@ -112,6 +112,14 @@ rm -f $RPM_BUILD_ROOT%{_libdir}/libtpms.la
%postun -p /sbin/ldconfig
%changelog
* Tue Jun 10 2025 Stefan Berger - 0.8.10-1
- tpm2: Fix potential out-of-bound access & abort due to HMAC signing issue (CVE-2025-49133)
- tpm2: Remove assigned-to value to offset because it is unused (Coverity)
- Insert assert ensuring *buflen != BUFLEN_EMPTY_BUFFER (Coverity)
- tpm2: Address Coverity Issue by casting '1' before shift (CID 1470813)
- tpm2: Return TPM_RC_VALUE upon decryption failure
- tpm12: Replace include of engine.h with err.h
* Tue Feb 28 2023 Stefan Berger - 0.8.9-1
- tpm2: Check size of buffer before accessing it (CVE-2023-1017 & -1018)