CNNVD-202601-087 Information

CNNVD ID

CNNVD-202601-087

Related CVE

CVE-2026-21444

• CNNVD Published: 2026-01-02

Description (Chinese)

libtpms是Stefan Berger个人开发者的一个可信平台模块的软件仿真。 libtpms 0.10.0版本和0.10.1版本存在安全特征问题漏洞，该漏洞源于返回初始化向量不当，可能削弱后续加密和解密步骤，影响数据机密性。

Description (English)

Libtpms is a software simulation of a credible platform module by Stefan Berger’s personal developer. libtpms version 0.10.0 and version 0.10.1 contain a security feature loophole, which stems from an inappropriate return initialization vector that may weaken subsequent encryption and declassification steps and affect data confidentiality.

Hazard Level

High

Vulnerability Type

安全特征问题

Affected Vendor

个人开发者

Published

2026-01-02

Last Modified

2026-02-24

References

https://github.com/stefanberger/libtpms/commit/33c9ff074cb16c1841ce7d7f33643c17c426743a https://github.com/stefanberger/libtpms/issues/541 https://github.com/stefanberger/libtpms/security/advisories/GHSA-7jxr-4j3g-p34f