Akorb

**Name of the Vulnerable Software and Affected Versions** tpm2-tools versions prior to 5.7 **Description** The issue allows a malicious attacker to generate arbitrary quote data that is not detected by `tpm2 checkquote`. This is related to the Trusted Platform Module (TPM2.0) tools. **Recommendations** For versions prior to 5.7, update to version 5.7 to resolve the issue. As a temporary workaround, consider restricting the use of the `tpm2 checkquote` function until the update is applied.

**Name of the Vulnerable Software and Affected Versions** TPM2 Software Stack versions prior to 4.1.0 **Description** The issue is related to the TPM2 GENERATED VALUE() function in the TCG TPM2 TPM2 Software Stack implementation. It lacks a check to ensure the magic number in the attest matches the TPM2 GENERATED VALUE. This allows an attacker to generate arbitrary quote data that may not be detected by Fapi VerifyQuote. The verifier can receive a state that does not represent the actual state of the device under test, potentially granting malicious devices access to unauthorized data or services. **Recommendations** For versions prior to 4.1.0, update to version 4.1.0 to resolve the issue. As a temporary workaround, consider restricting access to the `TPMS ATTEST` structure and the `Fapi Quote` and `Fapi VerifyQuote` functions to minimize the risk of exploitation. Avoid using arbitrary numbers in the `TPM2 GENERATED magic` field of the JSON structure until the issue is resolved.