ALSA-2025:23210

[ALSA-2025:23210] Important: keylime security update

Type:

security

Severity:

important

Release date:

2025-12-17

Description:

Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution.  

Security Fix(es):  

  * keylime: Keylime: Registrar allows identity takeover via duplicate UUID registration (CVE-2025-13609)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	keylime-tenant-7.12.1-11.el9_7.3.aarch64.rpm	056907ffbb1e85a2d9fac21e4dc13bafe8ce8f2e49ed703b9c392e997c2e6626
aarch64	keylime-base-7.12.1-11.el9_7.3.aarch64.rpm	1b3ccf2aea1da43a4f8529ca09da86c149a42501d6c5613f11dc8e171c5b791c
aarch64	python3-keylime-7.12.1-11.el9_7.3.aarch64.rpm	1c9b0be23b2b933b860834ec0ebaf0b432b1e4edda69b69eefb9b927134ae276
aarch64	keylime-verifier-7.12.1-11.el9_7.3.aarch64.rpm	6c4a55ab4733b7e754b9378fef28c7c76fea7b0cb2dd841a8be2f708a08a0072
aarch64	keylime-7.12.1-11.el9_7.3.aarch64.rpm	fb5da47d5a327260073d9f6fb07d1af5e35d88ebb5e368c1af003c26d233fecf
aarch64	keylime-registrar-7.12.1-11.el9_7.3.aarch64.rpm	feaa67791bf9839affd4870bebdd4d7440dca8a9e678eba88015e14166f909b8
noarch	keylime-selinux-7.12.1-11.el9_7.3.noarch.rpm	dcd62073eeca23c4ecae679315d947a18542766de1fa33068f399f691fe3f626
ppc64le	keylime-verifier-7.12.1-11.el9_7.3.ppc64le.rpm	6c6cf910dbc285076db13d35e0499f6c7b9831a79ce4437a642f5355dcc4c6e0
ppc64le	keylime-base-7.12.1-11.el9_7.3.ppc64le.rpm	72143652d71472d80c026c6641846187fe45ec2aafaae1ade3eb02d9a1998786
ppc64le	keylime-tenant-7.12.1-11.el9_7.3.ppc64le.rpm	829490c84aab1f9d5ba6576d0090cbe83fb8455e2c2538208f4abfb07de4ee7f
ppc64le	keylime-registrar-7.12.1-11.el9_7.3.ppc64le.rpm	a3f9a0e9c374909b1e5c1b161e6e5051df4708e2a86911fe735b16ea3ca3932a
ppc64le	python3-keylime-7.12.1-11.el9_7.3.ppc64le.rpm	bb87f8b148186b526f9a05cdb7670544b0664757609f7878b2ba2b637e36d0e3
ppc64le	keylime-7.12.1-11.el9_7.3.ppc64le.rpm	c48d81b7910005f5f20e026dfcdbbb8121e98bb527fbeb56d691f910c81b83d0
s390x	keylime-tenant-7.12.1-11.el9_7.3.s390x.rpm	4772069bfecc6aff83aebc8289f3c64cb690b219d2ce6facf287cc273c91328e
s390x	keylime-7.12.1-11.el9_7.3.s390x.rpm	6c2b4d357a9941348b8e79d8f784f2388d9da395d298d6f1b4e72f40f2efa02f
s390x	keylime-verifier-7.12.1-11.el9_7.3.s390x.rpm	6c7bba3bc359415763663e9f222d7d53701c3899e369c8d3f49e216359642084
s390x	keylime-registrar-7.12.1-11.el9_7.3.s390x.rpm	73452d4cf05c6b425761651b6709fd011cd287007f8783d70851d2336ece2461
s390x	keylime-base-7.12.1-11.el9_7.3.s390x.rpm	8cdb5b6bdf3adf980bffca7749f4a2df8fd4dae26132997012d60acb4b8f463d
s390x	python3-keylime-7.12.1-11.el9_7.3.s390x.rpm	ff852aef816f30299209ed889b74d2137362b36df286fd63a818954d23677ba0
x86_64	python3-keylime-7.12.1-11.el9_7.3.x86_64.rpm	0955f02a282156ab539c8926aaa44e02bf2ce7db2e72d3960d3281d4aa672941
x86_64	keylime-7.12.1-11.el9_7.3.x86_64.rpm	10f2e7e24181cd33947207748f34f92210d9733328a4783fe5e618e363f1abfe
x86_64	keylime-registrar-7.12.1-11.el9_7.3.x86_64.rpm	59cabf4312b80a0a6482b4f4aa9b8dbb74e1969dfb96f35ad66ff1dbbd6f7d6c
x86_64	keylime-base-7.12.1-11.el9_7.3.x86_64.rpm	78da225b5f61983420332e116de62052130448621c72966ccc19a18349242363
x86_64	keylime-verifier-7.12.1-11.el9_7.3.x86_64.rpm	ae7cb23ef76cdc517abbc8ad1e317faaee14e4d574bfede700955241c1e03dd6
x86_64	keylime-tenant-7.12.1-11.el9_7.3.x86_64.rpm	b080eec9e77607da3625e638a7a778064e640c10531a40ecc7eabcd9d3c9348c

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.