Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package libtpms for openSUSE:Factory checked in at 2021-04-23 17:49:36 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libtpms (Old) and /work/SRC/openSUSE:Factory/.libtpms.new.12324 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libtpms" Fri Apr 23 17:49:36 2021 rev:10 rq:886707 version:0.8.2 Changes: -------- --- /work/SRC/openSUSE:Factory/libtpms/libtpms.changes 2021-03-24 16:09:50.763743425 +0100 +++ /work/SRC/openSUSE:Factory/.libtpms.new.12324/libtpms.changes 2021-04-23 17:49:37.438690842 +0200 @@ -1,0 +2,34 @@ +Mon Apr 19 07:18:37 UTC 2021 - Gary Ching-Pang Lin <g...@suse.com> + +- Update to version 0.8.2 + * NOTE: Downgrade to 0.7.x or below is not possible. + Due to fixes in the TPM 2 prime number generation code in + rev155 it is not possible to downgrade from libtpms version + 0.8.0 to some previous version. The seeds are now associated + with an age so that older seeds use the old TPM 2 prime number + generation code while newer seed use the newer code. + * tpm2: rev155: Add new RsaAdjustPrimeCandidate code but do + not use (bsc#1184939 CVE-2021-3505) + * tpm2: Activate SEED_COMPAT_LEVEL_RSA_PRIME_ADJUST_FIX + (bsc#1184939 CVE-2021-3505) + * Update to TPM 2 code release 159 + - X509 support is enabled + + SM2 signing of ceritificates is NOT supported + - Authenticated timers are disabled + * Update to TPM 2 code relase 162 + - ECC encryption / decryption is disabled + * Fix support for elliptic curve due to missing unmarshalling + code + * Runtime filter supported elliptic curves supported by OpenSSL + * Fix output buffer parameter and size for RSA decryption that + could cause stack corruption under certain circumstances + * Set the RSA PSS salt length to the digest length rather than + max + * Fixes to symmetric decryption related to input size check, + defer padding to the user [EVP_CIPHER_CTX_set_padding(ctx, 0)] + and to always use a temporary malloc'ed buffer for decryption + * Fixed the set of PCRs belonging to the TCB group. This affects + the pcrUpdateCounter in TPM2_Pcrread() responses, thus needs + latest swtpm for test cases to succeed there. + +------------------------------------------------------------------- Old: ---- v0.7.7.tar.gz New: ---- v0.8.2.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libtpms.spec ++++++ --- /var/tmp/diff_new_pack.vxayX3/_old 2021-04-23 17:49:37.846691544 +0200 +++ /var/tmp/diff_new_pack.vxayX3/_new 2021-04-23 17:49:37.846691544 +0200 @@ -18,7 +18,7 @@ %define lname libtpms0 Name: libtpms -Version: 0.7.7 +Version: 0.8.2 Release: 0 Summary: Library providing Trusted Platform Module (TPM) functionality License: BSD-3-Clause ++++++ v0.7.7.tar.gz -> v0.8.2.tar.gz ++++++ ++++ 32304 lines of diff (skipped)
