CVE-2025-11932

Опубликовано: 21 нояб. 2025

Источник: debian

EPSS Низкий

Описание

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder

Пакет	Статус	Версия исправления	Релиз	Тип
wolfssl	fixed	5.8.4-1		package
wolfssl	no-dsa		trixie	package
wolfssl	no-dsa		bookworm	package
wolfssl	postponed		bullseye	package

https://github.com/wolfSSL/wolfssl/pull/9223
Fixed by: https://github.com/wolfSSL/wolfssl/commit/7afcf200774987fcd349663733770d38c1d97292 (v5.8.4-stable)

EPSS

Процентиль: 2%

0.00013

Низкий

CVE-2025-11932

CVSS3: 4.3

ubuntu

3 месяца назад

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder

CVE-2025-11932

CVSS3: 4.3

nvd

3 месяца назад

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder

CVE-2025-11932

msrc

2 месяца назад

Timing Side-Channel in PSK Binder Verification

GHSA-6qhq-g72j-7wvf

CVSS3: 4.3

github

3 месяца назад

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder

EPSS

Процентиль: 2%

0.00013

Низкий