EPSS
Percentile
12.6%
libtpms.so is vulnerable to denial of service. Decrypting data using RSA causes a SIGBUS (bad memory access) and termination of swtpm in CryptRsaDecrypt() in src/tpm2/crypto/openssl/CryptRsa.c.
CryptRsaDecrypt()
src/tpm2/crypto/openssl/CryptRsa.c
bugzilla.redhat.com/show_bug.cgi?id=1964358
github.com/stefanberger/libtpms/commit/40cfe134c017d3aeaaed05ce71eaf9bfbe556b16