VDB
ALSA-2022%3A8100
ALSA-2022%3A8100
PUBLISHED
SWTPM is a TPM emulator built on libtpms providing TPM functionality for QEMU VMs. Security Fix(es): * swtpm: Unchecked header size indicator against expected size (CVE-2022-23645) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| AlmaLinux:9 | swtpm | 0, 0 |
| AlmaLinux:9 | swtpm-tools | 0, 0 |
| AlmaLinux:9 | swtpm-libs | 0, 0 |
Timeline
- Nov 15, 2022 CVE Published
- Nov 18, 2022 CVE Updated
- Mar 6, 2026 Distribution Patch
- Mar 6, 2026 Distribution Patch
- Mar 6, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2022:8100 vendor-advisory
- https://access.redhat.com/security/cve/CVE-2022-23645 third-party-advisory
- https://bugzilla.redhat.com/2056491 third-party-advisory
- https://errata.almalinux.org/9/ALSA-2022-8100.html vendor-advisory