vulnerability

Oracle Linux: CVE-2023-3674: ELSA-2024-1139: keylime security update (LOW)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
1	(AV:L/AC:L/Au:M/C:N/I:P/A:N)	Jul 12, 2023	Mar 6, 2024	Dec 3, 2025

Severity

CVSS

(AV:L/AC:L/Au:M/C:N/I:P/A:N)

Published

Jul 12, 2023

Added

Mar 6, 2024

Modified

Dec 3, 2025

Description

A flaw was found in the keylime attestation verifier, which fails to flag a device's submitted TPM quote as faulty when the quote's signature does not validate for some reason. Instead, it will only emit an error in the log without flagging the device as untrusted.

Solutions

oracle-linux-upgrade-keylimeoracle-linux-upgrade-keylime-baseoracle-linux-upgrade-keylime-registraroracle-linux-upgrade-keylime-selinuxoracle-linux-upgrade-keylime-tenantoracle-linux-upgrade-keylime-verifieroracle-linux-upgrade-python3-keylime

References

CVE-2023-3674
https://attackerkb.com/topics/CVE-2023-3674
ELSA-ELSA-2024-1139
CWE-1283

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today