8 matches found
Heap-based Buffer Overflow
Overview wolfssl is a None Affected versions of this package are vulnerable to Heap-based Buffer Overflow. via the DecodeObjectId function. An attacker can cause memory corruption or potentially execute arbitrary code by supplying crafted OID data that triggers a heap out-of-bounds write...
CVE-2026-5187
Two potential heap out-of-bounds write locations existed in DecodeObjectId in wolfcrypt/src/asn.c. First, a bounds check only validates one available slot before writing two OID arc values out0 and out1, enabling a 2-byte out-of-bounds write when outSz equals 1. Second, multiple callers pass...
UBUNTU-CVE-2026-5187
Two potential heap out-of-bounds write locations existed in DecodeObjectId in wolfcrypt/src/asn.c. First, a bounds check only validates one available slot before writing two OID arc values out0 and out1, enabling a 2-byte out-of-bounds write when outSz equals 1. Second, multiple callers pass...
CVE-2026-5187
Two potential heap out-of-bounds write locations existed in DecodeObjectId in wolfcrypt/src/asn.c. First, a bounds check only validates one available slot before writing two OID arc values out0 and out1, enabling a 2-byte out-of-bounds write when outSz equals 1. Second, multiple callers pass...
CVE-2026-5187
Two potential heap out-of-bounds write locations existed in DecodeObjectId in wolfcrypt/src/asn.c. First, a bounds check only validates one available slot before writing two OID arc values out0 and out1, enabling a 2-byte out-of-bounds write when outSz equals 1. Second, multiple callers pass...
CVE-2026-5187
Two potential heap out-of-bounds write locations existed in DecodeObjectId in wolfcrypt/src/asn.c. First, a bounds check only validates one available slot before writing two OID arc values out0 and out1, enabling a 2-byte out-of-bounds write when outSz equals 1. Second, multiple callers pass...
wolfSSL(CyaSSL) 安全漏洞
WolfSSL CyaSSL is a small, portable embedded SSL programming library developed by the American company wolfSSL, designed for developers working with embedded systems. WolfSSL CyaSSL has security vulnerabilities; these vulnerabilities stem from two potential stack overflow points in the...
PT-2026-31720
Name of the Vulnerable Software and Affected Versions wolfcrypt affected versions not specified Description Two potential heap out-of-bounds write locations existed in the DecodeObjectId function within wolfcrypt/src/asn.c. The first issue arises because a bounds check validates only one availabl...