CVE-2021-3746 log

Severity Medium
Remote No
Type Arbitrary code execution
A bug was discovered in libtpms before version 0.8.5 that may cause access beyond the boundary of internal buffers. The vulnerability can be triggered by specially-crafted TPM 2 command packets that then trigger the issue when the state of the TPM 2's volatile state is marshalled/written.
Group Package Affected Fixed Severity Status Ticket
AVG-2327 libtpms 0.8.4-1 0.8.5-1 Medium Fixed