2 matches found
CVE-2019-15651
CVE-2019-15651 affects wolfSSL 4.1.0 where DecodeCertExtensions in wolfcrypt/src/asn.c reads an ASN_BOOLEAN byte and mishandles GetLength_ex for crafted DER certificates, causing a one-byte heap-based buffer over-read. Multiple connected sources (NVD, Red Hat, CNVD, OSV, etc.) confirm this vulner...
CVE-2019-15651
wolfSSL 4.1.0 has a one-byte heap-based buffer over-read in DecodeCertExtensions in wolfcrypt/src/asn.c because reading the ASNBOOLEAN byte is mishandled for a crafted DER certificate in GetLengthex...