2 matches found
CVE-2026-55950
This CVE (CVE-2026-55950) describes a TOCTOU race in Erlang/OTP ssl (dtls_packet_demux.erl) where a DTLS listener’s shared demux process can be crashed by an unauthenticated remote attacker sending rapid ClientHello datagrams from the same source IP/port. The race in the internal gb_trees store l...
PolarSSL Memory Disclosure Vulnerability
PolarSSL mbed TLS is a dual-authorization implementation of SSL, the TLS protocol, and its encryption and support algorithms. A memory leak vulnerability exists in PolarSSL versions prior to 1.3.9, which can be exploited by remote attackers to cause a denial of service memory exhaustion via a lar...