FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
9b9a5f6e-1755-11ed-adef-589cfc01894awolfssl -- multiple issues

wolfSSL blog reports:

In release 5.4.0 there were 3 vulnerabilities listed as fixed in wolfSSL. Two relatively new reports, one dealing with a DTLS 1.0/1.2 denial of service attack and the other a ciphertext attack on ECC/DH operations. The last vulnerability listed was a public disclosure of a previous attack on AMD devices fixed since wolfSSL version 5.1.0. Coordination of the disclosure of the attack was done responsibly, in cooperation with the researchers, waiting for the public release of the attack details since it affects multiple security libraries.


Discovery 2022-07-11
Entry 2022-08-08
wolfssl
< 5.4.0

CVE-2022-34293
CVE-2020-12966
CVE-2021-46744
https://github.com/wolfSSL/wolfssl/releases/tag/v5.4.0-stable
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1013
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1033