Red Hat Product Errata RHSA-2025:12100 - Security Advisory
Issued:
2025-07-29
Updated:
2025-07-29

RHSA-2025:12100 - Security Advisory

Synopsis

Moderate: libtpms security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for libtpms is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The libtpms is a library providing Trusted Platform Module (TPM) functionality for virtual machines.

Security Fix(es):

  • libtpms: Libtpms Out-of-Bounds Read Vulnerability (CVE-2025-49133)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.6 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
  • Red Hat Enterprise Linux for ARM 64 9 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x

Fixes

  • BZ - 2371585 - CVE-2025-49133 libtpms: Libtpms Out-of-Bounds Read Vulnerability

Red Hat Enterprise Linux for x86_64 9

SRPM
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.src.rpm SHA-256: 3f24942412bc0154a2d290760c305fb635f537bf719c1a4b38c7a547d69aee05
x86_64
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.i686.rpm SHA-256: 8d77386d9b67ce463eb0f819c4004d41172179d18609f954e3af1c7d5e1ec801
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.x86_64.rpm SHA-256: b287a706d399eb2ea9a8d72c9b43c13589fedf21c602eaea3511d70acb1255b0
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.i686.rpm SHA-256: 9d06085eeb2c09f5c57d1931bb8302ba143da13e0395baeb434c8be00eb754f9
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.x86_64.rpm SHA-256: f216f729a977143d0cefd957dfa2b339350fd736ac591e5ac3734efd89b630a2
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.i686.rpm SHA-256: bf76495edd5036cef20bd5ecfddb5586bb0b0e4ba5b0e218b3b4d0d210b86ee3
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.x86_64.rpm SHA-256: f53b3336fd5dfa7076026573e0f17cc880e7b195c1c47e859ddc8a4547853f9c

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6

SRPM
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.src.rpm SHA-256: 3f24942412bc0154a2d290760c305fb635f537bf719c1a4b38c7a547d69aee05
x86_64
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.i686.rpm SHA-256: 8d77386d9b67ce463eb0f819c4004d41172179d18609f954e3af1c7d5e1ec801
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.x86_64.rpm SHA-256: b287a706d399eb2ea9a8d72c9b43c13589fedf21c602eaea3511d70acb1255b0
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.i686.rpm SHA-256: 9d06085eeb2c09f5c57d1931bb8302ba143da13e0395baeb434c8be00eb754f9
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.x86_64.rpm SHA-256: f216f729a977143d0cefd957dfa2b339350fd736ac591e5ac3734efd89b630a2
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.i686.rpm SHA-256: bf76495edd5036cef20bd5ecfddb5586bb0b0e4ba5b0e218b3b4d0d210b86ee3
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.x86_64.rpm SHA-256: f53b3336fd5dfa7076026573e0f17cc880e7b195c1c47e859ddc8a4547853f9c

Red Hat Enterprise Linux Server - AUS 9.6

SRPM
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.src.rpm SHA-256: 3f24942412bc0154a2d290760c305fb635f537bf719c1a4b38c7a547d69aee05
x86_64
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.i686.rpm SHA-256: 8d77386d9b67ce463eb0f819c4004d41172179d18609f954e3af1c7d5e1ec801
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.x86_64.rpm SHA-256: b287a706d399eb2ea9a8d72c9b43c13589fedf21c602eaea3511d70acb1255b0
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.i686.rpm SHA-256: 9d06085eeb2c09f5c57d1931bb8302ba143da13e0395baeb434c8be00eb754f9
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.x86_64.rpm SHA-256: f216f729a977143d0cefd957dfa2b339350fd736ac591e5ac3734efd89b630a2
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.i686.rpm SHA-256: bf76495edd5036cef20bd5ecfddb5586bb0b0e4ba5b0e218b3b4d0d210b86ee3
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.x86_64.rpm SHA-256: f53b3336fd5dfa7076026573e0f17cc880e7b195c1c47e859ddc8a4547853f9c

Red Hat Enterprise Linux for IBM z Systems 9

SRPM
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.src.rpm SHA-256: 3f24942412bc0154a2d290760c305fb635f537bf719c1a4b38c7a547d69aee05
s390x
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.s390x.rpm SHA-256: 0c7051c8e1fa9ca7fd717e0c68e7525988a46d8e79b1925629d039fb52d4b06b
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.s390x.rpm SHA-256: 9dc4bf6baf6656627ac216db4f120424fcd0b4593f51722483340af8562f43e3
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.s390x.rpm SHA-256: abd7fc21a69a032a25454862614e4eabcdc2d56649599a0065f70db061d99569

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6

SRPM
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.src.rpm SHA-256: 3f24942412bc0154a2d290760c305fb635f537bf719c1a4b38c7a547d69aee05
s390x
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.s390x.rpm SHA-256: 0c7051c8e1fa9ca7fd717e0c68e7525988a46d8e79b1925629d039fb52d4b06b
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.s390x.rpm SHA-256: 9dc4bf6baf6656627ac216db4f120424fcd0b4593f51722483340af8562f43e3
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.s390x.rpm SHA-256: abd7fc21a69a032a25454862614e4eabcdc2d56649599a0065f70db061d99569

Red Hat Enterprise Linux for ARM 64 9

SRPM
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.src.rpm SHA-256: 3f24942412bc0154a2d290760c305fb635f537bf719c1a4b38c7a547d69aee05
aarch64
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.aarch64.rpm SHA-256: 3d35f371ef41f73e529cc348de7f0b8046b25f3bdf4fe6c766eec9bc7c755889
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.aarch64.rpm SHA-256: 71e1ad72c4cc998bf534efd0cc6c367788bdb4dd011e8c2dc1db494c6fecc109
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.aarch64.rpm SHA-256: 10fa9b69df33aba20931d2e630ef4c148f29c31798836e1b79aa5b97e4c2a41e

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6

SRPM
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.src.rpm SHA-256: 3f24942412bc0154a2d290760c305fb635f537bf719c1a4b38c7a547d69aee05
aarch64
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.aarch64.rpm SHA-256: 3d35f371ef41f73e529cc348de7f0b8046b25f3bdf4fe6c766eec9bc7c755889
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.aarch64.rpm SHA-256: 71e1ad72c4cc998bf534efd0cc6c367788bdb4dd011e8c2dc1db494c6fecc109
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.aarch64.rpm SHA-256: 10fa9b69df33aba20931d2e630ef4c148f29c31798836e1b79aa5b97e4c2a41e

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6

SRPM
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.src.rpm SHA-256: 3f24942412bc0154a2d290760c305fb635f537bf719c1a4b38c7a547d69aee05
x86_64
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.i686.rpm SHA-256: 8d77386d9b67ce463eb0f819c4004d41172179d18609f954e3af1c7d5e1ec801
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.x86_64.rpm SHA-256: b287a706d399eb2ea9a8d72c9b43c13589fedf21c602eaea3511d70acb1255b0
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.i686.rpm SHA-256: 9d06085eeb2c09f5c57d1931bb8302ba143da13e0395baeb434c8be00eb754f9
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.x86_64.rpm SHA-256: f216f729a977143d0cefd957dfa2b339350fd736ac591e5ac3734efd89b630a2
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.i686.rpm SHA-256: bf76495edd5036cef20bd5ecfddb5586bb0b0e4ba5b0e218b3b4d0d210b86ee3
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.x86_64.rpm SHA-256: f53b3336fd5dfa7076026573e0f17cc880e7b195c1c47e859ddc8a4547853f9c

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6

SRPM
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.src.rpm SHA-256: 3f24942412bc0154a2d290760c305fb635f537bf719c1a4b38c7a547d69aee05
aarch64
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.aarch64.rpm SHA-256: 3d35f371ef41f73e529cc348de7f0b8046b25f3bdf4fe6c766eec9bc7c755889
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.aarch64.rpm SHA-256: 71e1ad72c4cc998bf534efd0cc6c367788bdb4dd011e8c2dc1db494c6fecc109
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.aarch64.rpm SHA-256: 10fa9b69df33aba20931d2e630ef4c148f29c31798836e1b79aa5b97e4c2a41e

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6

SRPM
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.src.rpm SHA-256: 3f24942412bc0154a2d290760c305fb635f537bf719c1a4b38c7a547d69aee05
s390x
libtpms-0.9.1-5.20211126git1ff6fe1f43.el9_6.s390x.rpm SHA-256: 0c7051c8e1fa9ca7fd717e0c68e7525988a46d8e79b1925629d039fb52d4b06b
libtpms-debuginfo-0.9.1-5.20211126git1ff6fe1f43.el9_6.s390x.rpm SHA-256: 9dc4bf6baf6656627ac216db4f120424fcd0b4593f51722483340af8562f43e3
libtpms-debugsource-0.9.1-5.20211126git1ff6fe1f43.el9_6.s390x.rpm SHA-256: abd7fc21a69a032a25454862614e4eabcdc2d56649599a0065f70db061d99569

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.