Rapid7 Vulnerability & Exploit Database

Oracle Linux: (CVE-2022-23645) (Multiple Advisories): swtpm security and bug fix update

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

Oracle Linux: (CVE-2022-23645) (Multiple Advisories): swtpm security and bug fix update

Severity

CVSS

(AV:L/AC:L/Au:N/C:N/I:N/A:P)

Published

02/18/2022

Created

03/25/2022

Added

03/23/2022

Modified

11/23/2022

Description

swtpm is a libtpms-based TPM emulator with socket, character device, and Linux CUSE interface. Versions prior to 0.5.3, 0.6.2, and 0.7.1 are vulnerable to out-of-bounds read. A specially crafted header of swtpm's state, where the blobheader's hdrsize indicator has an invalid value, may cause an out-of-bounds access when the byte array representing the state of the TPM is accessed. This will likely crash swtpm or prevent it from starting since the state cannot be understood. Users should upgrade to swtpm v0.5.3, v0.6.2, or v0.7.1 to receive a patch. There are currently no known workarounds.

Solution(s)

oracle-linux-upgrade-hivex
oracle-linux-upgrade-hivex-devel
oracle-linux-upgrade-libguestfs
oracle-linux-upgrade-libguestfs-appliance
oracle-linux-upgrade-libguestfs-bash-completion
oracle-linux-upgrade-libguestfs-devel
oracle-linux-upgrade-libguestfs-gfs2
oracle-linux-upgrade-libguestfs-gobject
oracle-linux-upgrade-libguestfs-gobject-devel
oracle-linux-upgrade-libguestfs-inspect-icons
oracle-linux-upgrade-libguestfs-java
oracle-linux-upgrade-libguestfs-java-devel
oracle-linux-upgrade-libguestfs-javadoc
oracle-linux-upgrade-libguestfs-man-pages-ja
oracle-linux-upgrade-libguestfs-man-pages-uk
oracle-linux-upgrade-libguestfs-rescue
oracle-linux-upgrade-libguestfs-rsync
oracle-linux-upgrade-libguestfs-tools
oracle-linux-upgrade-libguestfs-tools-c
oracle-linux-upgrade-libguestfs-winsupport
oracle-linux-upgrade-libguestfs-xfs
oracle-linux-upgrade-libiscsi
oracle-linux-upgrade-libiscsi-devel
oracle-linux-upgrade-libiscsi-utils
oracle-linux-upgrade-libnbd
oracle-linux-upgrade-libnbd-bash-completion
oracle-linux-upgrade-libnbd-devel
oracle-linux-upgrade-libtpms
oracle-linux-upgrade-libtpms-devel
oracle-linux-upgrade-libvirt
oracle-linux-upgrade-libvirt-client
oracle-linux-upgrade-libvirt-daemon
oracle-linux-upgrade-libvirt-daemon-config-network
oracle-linux-upgrade-libvirt-daemon-config-nwfilter
oracle-linux-upgrade-libvirt-daemon-driver-interface
oracle-linux-upgrade-libvirt-daemon-driver-network
oracle-linux-upgrade-libvirt-daemon-driver-nodedev
oracle-linux-upgrade-libvirt-daemon-driver-nwfilter
oracle-linux-upgrade-libvirt-daemon-driver-qemu
oracle-linux-upgrade-libvirt-daemon-driver-secret
oracle-linux-upgrade-libvirt-daemon-driver-storage
oracle-linux-upgrade-libvirt-daemon-driver-storage-core
oracle-linux-upgrade-libvirt-daemon-driver-storage-disk
oracle-linux-upgrade-libvirt-daemon-driver-storage-gluster
oracle-linux-upgrade-libvirt-daemon-driver-storage-iscsi
oracle-linux-upgrade-libvirt-daemon-driver-storage-iscsi-direct
oracle-linux-upgrade-libvirt-daemon-driver-storage-logical
oracle-linux-upgrade-libvirt-daemon-driver-storage-mpath
oracle-linux-upgrade-libvirt-daemon-driver-storage-rbd
oracle-linux-upgrade-libvirt-daemon-driver-storage-scsi
oracle-linux-upgrade-libvirt-daemon-kvm
oracle-linux-upgrade-libvirt-dbus
oracle-linux-upgrade-libvirt-devel
oracle-linux-upgrade-libvirt-docs
oracle-linux-upgrade-libvirt-libs
oracle-linux-upgrade-libvirt-lock-sanlock
oracle-linux-upgrade-libvirt-nss
oracle-linux-upgrade-libvirt-python
oracle-linux-upgrade-libvirt-wireshark
oracle-linux-upgrade-lua-guestfs
oracle-linux-upgrade-nbdfuse
oracle-linux-upgrade-nbdkit
oracle-linux-upgrade-nbdkit-bash-completion
oracle-linux-upgrade-nbdkit-basic-filters
oracle-linux-upgrade-nbdkit-basic-plugins
oracle-linux-upgrade-nbdkit-curl-plugin
oracle-linux-upgrade-nbdkit-devel
oracle-linux-upgrade-nbdkit-example-plugins
oracle-linux-upgrade-nbdkit-gzip-filter
oracle-linux-upgrade-nbdkit-gzip-plugin
oracle-linux-upgrade-nbdkit-linuxdisk-plugin
oracle-linux-upgrade-nbdkit-nbd-plugin
oracle-linux-upgrade-nbdkit-python-plugin
oracle-linux-upgrade-nbdkit-server
oracle-linux-upgrade-nbdkit-ssh-plugin
oracle-linux-upgrade-nbdkit-tar-filter
oracle-linux-upgrade-nbdkit-tar-plugin
oracle-linux-upgrade-nbdkit-tmpdisk-plugin
oracle-linux-upgrade-nbdkit-vddk-plugin
oracle-linux-upgrade-nbdkit-xz-filter
oracle-linux-upgrade-netcf
oracle-linux-upgrade-netcf-devel
oracle-linux-upgrade-netcf-libs
oracle-linux-upgrade-ocaml-hivex
oracle-linux-upgrade-ocaml-hivex-devel
oracle-linux-upgrade-ocaml-libguestfs
oracle-linux-upgrade-ocaml-libguestfs-devel
oracle-linux-upgrade-ocaml-libnbd
oracle-linux-upgrade-ocaml-libnbd-devel
oracle-linux-upgrade-perl-hivex
oracle-linux-upgrade-perl-sys-guestfs
oracle-linux-upgrade-perl-sys-virt
oracle-linux-upgrade-python3-hivex
oracle-linux-upgrade-python3-libguestfs
oracle-linux-upgrade-python3-libnbd
oracle-linux-upgrade-python3-libvirt
oracle-linux-upgrade-qemu-guest-agent
oracle-linux-upgrade-qemu-img
oracle-linux-upgrade-qemu-kvm
oracle-linux-upgrade-qemu-kvm-block-curl
oracle-linux-upgrade-qemu-kvm-block-gluster
oracle-linux-upgrade-qemu-kvm-block-iscsi
oracle-linux-upgrade-qemu-kvm-block-rbd
oracle-linux-upgrade-qemu-kvm-block-ssh
oracle-linux-upgrade-qemu-kvm-common
oracle-linux-upgrade-qemu-kvm-core
oracle-linux-upgrade-qemu-kvm-docs
oracle-linux-upgrade-qemu-kvm-hw-usbredir
oracle-linux-upgrade-qemu-kvm-tests
oracle-linux-upgrade-qemu-kvm-ui-opengl
oracle-linux-upgrade-qemu-kvm-ui-spice
oracle-linux-upgrade-ruby-hivex
oracle-linux-upgrade-ruby-libguestfs
oracle-linux-upgrade-seabios
oracle-linux-upgrade-seabios-bin
oracle-linux-upgrade-seavgabios-bin
oracle-linux-upgrade-sgabios
oracle-linux-upgrade-sgabios-bin
oracle-linux-upgrade-supermin
oracle-linux-upgrade-supermin-devel
oracle-linux-upgrade-swtpm
oracle-linux-upgrade-swtpm-devel
oracle-linux-upgrade-swtpm-libs
oracle-linux-upgrade-swtpm-tools
oracle-linux-upgrade-swtpm-tools-pkcs11
oracle-linux-upgrade-virt-dib
oracle-linux-upgrade-virt-v2v
oracle-linux-upgrade-virt-v2v-bash-completion
oracle-linux-upgrade-virt-v2v-man-pages-ja
oracle-linux-upgrade-virt-v2v-man-pages-uk

References

ELSA-2022-8100
CVE-2022-23645

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Oracle Linux: (CVE-2022-23645) (Multiple Advisories): swtpm security and bug fix update

Oracle Linux: (CVE-2022-23645) (Multiple Advisories): swtpm security and bug fix update

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.