CVE-2025-1057

Name of the Vulnerable Software and Affected Versions Keylime versions 7.8.0 through 7.12.0

Description The issue arises from the Keylime registrar implementing stricter type checking in version 7.12.0, causing it to reject data formats previously stored in the database by versions 7.8.0 and later. This leads to a Denial-of-Service vulnerability, where an attacker can populate the database with multiple valid agent registrations before the update to 7.12.0, resulting in query failures after the update.

Recommendations For Keylime versions 7.8.0 through 7.12.0, upgrade to versions 7.12.1 or later. As a temporary workaround, consider removing the registrar database and re-registering all agents to minimize the risk of exploitation.