#VU77293 Buffer overflow in libtpms - CVE-2021-3746

Cybersecurity Help s.r.o.

Published: 2023-06-14

Vulnerability identifier: #VU77293

Vulnerability risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-3746

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libtpms
Universal components / Libraries / Libraries used by multiple products

Vendor: Stefan Berger

Description

The vulnerability allows a remote attacker to perform a denial of service attack.

The vulnerability exists due to a boundary error. A remote attacker can trick the victim into opening a specially-crafted TPM2 command packets, trigger memory corruption and perform a denial of service attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

libtpms: 0.6.0 - 0.6.6, 0.7.0 - 0.7.9, 0.8.0 - 0.8.5

External links
https://bugzilla.redhat.com/show_bug.cgi?id=1998588

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

Latest bulletins with this vulnerability

Buffer overflow in IBM Power Systems

openEuler update for libtpms

SUSE update for libtpms

Fedora EPEL 8 update for libtpms