Описание
Heap buffer overflow in DTLS 1.3 ACK message processing. A remote attacker can send a crafted DTLS 1.3 ACK message that triggers a heap buffer overflow.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| wolfssl | unfixed | package | ||
| wolfssl | no-dsa | trixie | package | |
| wolfssl | no-dsa | bookworm | package |
Примечания
https://github.com/wolfssl/wolfssl/pull/10076
Fixed by (merge): https://github.com/wolfSSL/wolfssl/commit/5f54de05770e3258fb3a466074109c532334079b (v5.9.1-stable)
EPSS
Связанные уязвимости
Heap buffer overflow in DTLS 1.3 ACK message processing. A remote attacker can send a crafted DTLS 1.3 ACK message that triggers a heap buffer overflow.
Heap buffer overflow in DTLS 1.3 ACK message processing. A remote attacker can send a crafted DTLS 1.3 ACK message that triggers a heap buffer overflow.
Heap buffer overflow in DTLS 1.3 ACK message processing. A remote attacker can send a crafted DTLS 1.3 ACK message that triggers a heap buffer overflow.
EPSS