[Git][security-tracker-team/security-tracker][master] Add two more wolfssl issues

Fri Mar 20 22:04:31 GMT 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
02462047 by Salvatore Bonaccorso at 2026-03-20T23:04:11+01:00
Add two more wolfssl issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -305,9 +305,12 @@ CVE-2026-3547 (Out-of-bounds read in ALPN parsing due to incomplete validation.
 	NOTE: https://github.com/wolfSSL/wolfssl/pull/9860
 	NOTE: Fixed by: https://github.com/wolfSSL/wolfssl/commit/9d3cc6e30c778b124002cc45b7974d718b6649fd (v5.9.0-stable)
 CVE-2026-3230 (Missing required cryptographic step in the TLS 1.3 client HelloRetryRe ...)
-	TODO: check
+	- wolfssl 5.9.0-0.1
+	NOTE: https://github.com/wolfSSL/wolfssl/pull/9754
+	NOTE: Fixed by: https://github.com/wolfSSL/wolfssl/commit/f810dc2a017b0e95f755740cb37c8884345c4de7 (v5.9.0-stable)
 CVE-2026-3229 (An integer overflow vulnerability existed in the static function wolfs ...)
-	TODO: check
+	- wolfssl 5.9.0-0.1
+	NOTE: https://github.com/wolfSSL/wolfssl/pull/9827
 CVE-2026-33410 (Discourse is an open-source discussion platform. Versions prior to 202 ...)
 	NOT-FOR-US: Discourse
 CVE-2026-33408 (Discourse is an open-source discussion platform. Prior to versions 202 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/02462047bcb181432a6e4ae2a622c35bd8d6ff16

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/02462047bcb181432a6e4ae2a622c35bd8d6ff16
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260320/65c02ec6/attachment.htm>
