CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
Percentile
35.0%
CryptSym: fix AES output IV (CVE-2021-3505). Fixed a context save and suspend/resume problem when public keys are loaded. Reset too large size indicators in TPM2B to avoid access beyond buffer (CVE-2021-3623) Restore original value in buffer if unmarshalled one was illegal Fixed out-of-bounds access via specially crafted TPM 2 command packets (CVE-2021-3746) Marshal event sequence objects’ hash state
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 8 | noarch | libtpms | < 0.9.1-1 | libtpms-0.9.1-1.mga8 |
Mageia | 8 | noarch | swtpm | < 0.7.0-5 | swtpm-0.7.0-5.mga8 |
bugs.mageia.org/show_bug.cgi?id=28882
lists.fedoraproject.org/archives/list/[email protected]/message/NUCZX4S53TUNTSGTCRDNOQZV2V2RI4RJ/
lists.fedoraproject.org/archives/list/[email protected]/thread/46YMIRHQHNKPCVNRVW4W27MFQQU7ZHHV/
lists.fedoraproject.org/archives/list/[email protected]/thread/7E3B6T5RBDKAWETDTW3WPORY3NK5IR46/
lists.fedoraproject.org/archives/list/[email protected]/thread/7UCZ7AV2UKWYYCNZ2NLLXW7QYCX7K337/
lists.fedoraproject.org/archives/list/[email protected]/thread/DZI42OR3JUEGWRKEVCOHL2FPTJVYCYBT/
lists.fedoraproject.org/archives/list/[email protected]/thread/YVJSXDXD44WDR4VA2XL33IZDJTBGRXP7/
lists.fedoraproject.org/archives/list/[email protected]/thread/Z7KZSYMTE7Z4BBEZUWO2DIMQDWMGEP46/
lists.opensuse.org/archives/list/[email protected]/thread/75RD2O2OFCMWPCMY5QMSZRNV5PG5BTS6/
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
Percentile
35.0%