diff options
| author | Petr Štetiar <ynezz@true.cz> | 2022-09-28 11:28:06 +0200 |
|---|---|---|
| committer | Petr Štetiar <ynezz@true.cz> | 2022-09-29 07:53:56 +0200 |
| commit | ec8fb542ec3e4f584444a97de5ac05dbc2a9cde5 (patch) | |
| tree | 170264b189fb8789fc7f571a56ee3ef9c313f4e0 /package/libs/libselinux | |
| parent | a0cd133fdefc1f4bd99033a395fb6b14d5d251df (diff) | |
| download | upstream-ec8fb542ec3e4f584444a97de5ac05dbc2a9cde5.tar.gz upstream-ec8fb542ec3e4f584444a97de5ac05dbc2a9cde5.tar.bz2 upstream-ec8fb542ec3e4f584444a97de5ac05dbc2a9cde5.zip | |
wolfssl: fix TLSv1.3 RCE in uhttpd by using 5.5.1-stable (CVE-2022-39173)
Fixes denial of service attack and buffer overflow against TLS 1.3
servers using session ticket resumption. When built with
--enable-session-ticket and making use of TLS 1.3 server code in
wolfSSL, there is the possibility of a malicious client to craft a
malformed second ClientHello packet that causes the server to crash.
This issue is limited to when using both --enable-session-ticket and TLS
1.3 on the server side. Users with TLS 1.3 servers, and having
--enable-session-ticket, should update to the latest version of wolfSSL.
Thanks to Max at Trail of Bits for the report and "LORIA, INRIA, France"
for research on tlspuffin.
Complete release notes https://github.com/wolfSSL/wolfssl/releases/tag/v5.5.1-stable
Fixes: CVE-2022-39173
Fixes: https://github.com/openwrt/luci/issues/5962
References: https://github.com/wolfSSL/wolfssl/issues/5629
Tested-by: Kien Truong <duckientruong@gmail.com>
Reported-by: Kien Truong <duckientruong@gmail.com>
Signed-off-by: Petr Štetiar <ynezz@true.cz>
Diffstat (limited to 'package/libs/libselinux')
0 files changed, 0 insertions, 0 deletions