SB2023122813 - Multiple vulnerabilities in wolfSSL
Published: December 28, 2023
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 4 secuirty vulnerabilities.
1) Use of a broken or risky cryptographic algorithm (CVE-ID: CVE-2023-6935)
The vulnerability allows a remote attacker to gain access to sensitive information.
The vulnerability exists due to incomplete fix for #VU84838. A remote attacker can gain access to sensitive information.
2) Out-of-bounds read (CVE-ID: CVE-2023-6936)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition when processing a malformed ClientHello message in servers connecting over TLS 1.3 when the optional WOLFSSL_CALLBACKS has been defined. A remote attacker can trigger an out-of-bounds read error and read contents of memory on the system.
3) Cryptographic issues (CVE-ID: CVE-2023-6937)
The vulnerability allows a remote attacker to gain access to sensitive information.
The vulnerability exists due to wolfSSL does not check that messages in a single (D)TLS record do not span key boundaries. As a result, it is possible to combine (D)TLS messages using different keys into one (D)TLS record and force the client to accept an unencrypted flight from the server.
4) Cryptographic issues (CVE-ID: CVE-2024-1543)
The vulnerability allows a remote attacker to gain access to sensitive information.
A side channel vulnerability with AES T-Tables is possible in a very controlled environment where precision sub-cache-line inspection can happen, such as inside an Intel SGX enclave. This can lead to recovery of the AES key. To prevent this type of attack, wolfSSL added an AES bitsliced implementation which can be enabled with the "--enable-aes-bitsliced" configure option.
Remediation
Install update from vendor's website.