Information on source package wolfssl

Available versions

ReleaseVersion
sid3.15.3+dfsg-2

Open issues

BugsidDescription
CVE-2019-11873vulnerablewolfSSL 4.0.0 has a Buffer Overflow in DoPreSharedKeys in tls13.c when ...
CVE-2018-16870vulnerableIt was found that wolfssl before 3.15.7 is vulnerable to a new variant ...

Open unimportant issues

BugsidDescription
CVE-2019-6439vulnerableexamples/benchmark/tls_bench.c in a benchmark tool in wolfSSL through ...

Resolved issues

BugDescription
TEMP-0000000-2D36D7cyassl: RSA Padding check vulnerability
CVE-2018-12436wolfcrypt/src/ecc.c in wolfSSL before 3.15.1.patch allows a memory-cac ...
CVE-2017-8855wolfSSL before 3.11.0 does not prevent wc_DhAgree from accepting a mal ...
CVE-2017-8854wolfSSL before 3.10.2 has an out-of-bounds memory access with loading ...
CVE-2017-6076In versions of wolfSSL before 3.10.2 the function fp_mul_comba makes i ...
CVE-2017-2800A specially crafted x509 certificate can cause a single out of bounds ...
CVE-2017-13099wolfSSL prior to version 3.12.2 provides a weak Bleichenbacher oracle ...
CVE-2016-7440The C software implementation of AES Encryption and Decryption in wolf ...
CVE-2016-7439The C software implementation of RSA in wolfSSL (formerly CyaSSL) befo ...
CVE-2016-7438The C software implementation of ECC in wolfSSL (formerly CyaSSL) befo ...
CVE-2015-7744wolfSSL (formerly CyaSSL) before 3.6.8 does not properly handle faults ...
CVE-2015-6925wolfSSL (formerly CyaSSL) before 3.6.8 allows remote attackers to caus ...
CVE-2014-6500Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier, a ...
CVE-2014-6496Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier, a ...
CVE-2014-6495Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, a ...
CVE-2014-6494Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier, a ...
CVE-2014-6491Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier an ...
CVE-2014-6478Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, a ...
CVE-2014-3566The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ...
CVE-2014-2904
CVE-2014-2903CyaSSL does not check the key usage extension in leaf certificates, wh ...
CVE-2014-2902
CVE-2014-2901

Search for package or bug name: Reporting problems