CVE-2026-4395
CVE-2026-4395 affects wolfSSL wolfcrypt KCAPI ECC: a heap-based buffer overflow in wc_ecc_import_x963_ex() allows an attacker to write beyond the pubkey_raw buffer (132 bytes) when parsing a crafted oversized ECPoint in ServerKeyExchange. The path copies input to key->pubkey_raw via XMEMCPY wi...