Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in the libtpms code that may cause access beyond the boundary of internal buffers. The vulnerability is triggered by specially-crafted TPM2 command packets that then trigger the issue when the state of the TPM2's volatile state is written. The highest threat from this vulnerability is to system availability. This issue affects libtpms versions before 0.8.5, before 0.7.9 and before 0.6.6.
CVSS Information
N/A
Vulnerability Type
内存缓冲区边界内操作的限制不恰当
Vulnerability Title
Archlinux libtpms 缓冲区错误漏洞
Vulnerability Description
Archlinux libtpms是 Archlinux开源的一个应用程序。提供可信任平台模块(TPM 1.2和TPM 2.0)的软件仿真的库。 libtpms 存在缓冲区错误漏洞,该漏洞源于libtpms中存在越界访问的问题,攻击者可以通过构建特殊的TPM 2命令包进行越界访问敏感数据甚至进行拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A