CVE-2021-3505
5.5 MEDIUMA flaw was found in libtpms in versions before 0.8.0
Published: 2021-04-19 · Last updated: 2026-06-17
Severity and scoring
- CVSS
- 5.5 MEDIUM
- Vector
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- CWE
- CWE-331
Affected products
| Vendor | Product |
|---|---|
| fedoraproject | enterprise_linux, fedora, libtpms |
| libtpms_project | enterprise_linux, fedora, libtpms |
| redhat | enterprise_linux, fedora, libtpms |
Description
A flaw was found in libtpms in versions before 0.8.0. The TPM 2 implementation returns 2048 bit keys with ~1984 bit strength due to a bug in the TCG specification. The bug is in the key creation algorithm in RsaAdjustPrimeCandidate(), which is called before the prime number check. The highest threat from this vulnerability is to data confidentiality.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2021-3505
- [Patch]https://bugzilla.redhat.com/show_bug.cgi?id=1950046
- [Patch]https://github.com/stefanberger/libtpms/issues/183
- [Other]https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NUCZX4S53TUNTSGTCRDNOQZV2V2RI4RJ/
- [Patch]https://bugzilla.redhat.com/show_bug.cgi?id=1950046
- [Patch]https://github.com/stefanberger/libtpms/issues/183
- [Other]https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NUCZX4S53TUNTSGTCRDNOQZV2V2RI4RJ/
Related CVEs
Same vendor
- CVE-2026-1767 — A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` component (5.6 MEDIUM)
- CVE-2026-1766 — A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifically within the tracker-extract-mp3 com... (5.6 MEDIUM)
- CVE-2026-11793 — A stack buffer overflow flaw was found in 389 Directory Server (4.9 MEDIUM)
- CVE-2026-11790 — A flaw was found in 389 Directory Server (4.9 MEDIUM)
- CVE-2026-11789 — A flaw was found in 389 Directory Server (4.9 MEDIUM)
Same CWE
- CVE-2026-46473 — Authen::TOTP versions before 0.1.1 for Perl generate secrets using rand (7.5 HIGH)
- CVE-2026-8700 — Crypt::DSA versions before 1.20 for Perl generate seeds using rand (7.3 HIGH)
- CVE-2026-46474 — Trog::TOTP versions before 1.006 for Perl generate secrets using rand (7.5 HIGH)
- CVE-2026-42155 — Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community Edition e-com...
- CVE-2025-14972 — * Countermeasures for DPA within SYMCRYPTO engine on SixG301xxx devices are not sufficiently random and will eventually repeat