CVE-2022-25638

In wolfSSL before 5.2.0, certificate validation may be bypassed during attempted authentication by a TLS 1.3 client to a TLS 1.3 server. This occurs when the sig_algo field differs between the certificate_verify message and the certificate message.

Severity: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

References:

https://github.com/wolfSSL/wolfssl/pull/4813
https://github.com/wolfSSL/wolfssl/pull/4813
https://www.wolfssl.com/docs/security-vulnerabilities/
https://www.wolfssl.com/docs/security-vulnerabilities/

Published: 2022-02-24
Modified: 2024-11-21

CVE-2022-25640

In wolfSSL before 5.2.0, a TLS 1.3 server cannot properly enforce a requirement for mutual authentication. A client can simply omit the certificate_verify message from the handshake, and never present a certificate.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

References:

https://github.com/wolfSSL/wolfssl/pull/4831
https://github.com/wolfSSL/wolfssl/pull/4831

Version: 2.1.0

Package wolfssl update in sisyphus_mipsel on 2022-02-23

ALT-PU-2022-4140-1

Closed vulnerabilities

CVE-2022-25638

CVE-2022-25640