PT-2024-22691 · Tpm2+7 · Tpm2+7

Clauverjat

Published

2024-04-30

Updated

2025-10-02

CVE-2024-29039

CVSS v3.1

9.0

Critical

Vector

AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions tpm2 versions prior to 5.7

Description This issue allows attackers to manipulate tpm2 checkquote outputs by altering the TPML PCR SELECTION in the PCR input file. As a result, digest values are incorrectly mapped to PCR slots and banks, providing a misleading picture of the TPM state.

Recommendations For versions prior to 5.7, update to version 5.7 to resolve the issue. As a temporary workaround, consider restricting access to the PCR input file to prevent manipulation of the TPML PCR SELECTION.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-807

Related Identifiers

ALSA-2024:9424

ALT-PU-2024-7427

AZL-43015

AZL-43021

BDU:2025-16174

CVE-2024-29039

GHSA-8RJM-5F5F-H4Q6

INFSA-2024_9424

MGASA-2024-0170

OESA-2024-2081

OESA-2024-2082

OESA-2024-2083

OPENSUSE-SU-2024:13926-1

OPENSUSE-SU-2024_1636-1

RHSA-2024:9424

RHSA-2024_9424

RLSA-2024:9424

SUSE-SU-2024:1636-1

SUSE-SU-2024:1636-2

SUSE-SU-2025:20151-1

Affected Products

Alt Linux

Almalinux

Debian

Red Hat

Red Os

Rocky Linux

Suse

Tpm2

PT-2024-22691 · Tpm2+7 · Tpm2+7

CVE-2024-29039

Weakness Enumeration

Related Identifiers

Affected Products

References · 58