SynopsisThe remote Fedora host is missing a security update.
Descriptiontpm2-tss 2.4.3 changed or fixed :
• Fix CVE-2020-24455 FAPI PolicyPCR not instatiating correctly • Note that all TPM object created with a PolicyPCR with the currentPcrs • and currentPcrsAndBank options have been created with an incorrect policy • that ommits PCR checks. All these objects have to be recreated! • Fix bug in FAPI NV creation with custom index values • Cleanup of leftover sessions in error cases in FAPI • Better error messages in several FAPI errors • Add checks to FAPI policy paths • Add checks if FAPI is correctly provisioned • Fix execution of FAPI policies in some cases •
Allow 0x prefixes for TPMU_HA in JSON encoding
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpdate the affected tpm2-tss package.