Wind River Support Network

HomeDefectsLIN1021-8420
Fixed

LIN1021-8420 : Security Advisory - tpm2-tools - CVE-2024-29038

Created: Apr 26, 2024    Updated: May 26, 2025
Resolved Date: May 21, 2025
Found In Version: 10.21.20.1
Fix Version: 10.21.20.25
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

tpm2-tools is the source repository for the Trusted Platform Module (TPM2.0) tools. A malicious attacker can generate arbitrary quote data which is not detected by `tpm2 checkquote`. This issue was patched in version 5.7.

https://nvd.nist.gov/vuln/detail/CVE-2024-29038

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube