Vulnerability & Exploit Database

Back to search

SUSE: CVE-2017-16837: SUSE Linux Security Advisory

Severity CVSS Published Added Modified
5 (AV:L/AC:L/Au:N/C:P/I:P/A:P) November 14, 2017 November 23, 2017 December 04, 2017

Description

Certain function pointers in Trusted Boot (tboot) through 1.9.6 are not validated and can cause arbitrary code execution, which allows local users to overwrite dynamic PCRs of Trusted Platform Module (TPM) by hooking these function pointers.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

suse-upgrade-tboot