all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Keeping the wolves out of wolfSSL

Add to bookmarks
Jan. 12, 2023, 1 p.m. | tobgreg

Trail of Bits Blog blog.trailofbits.com

By Max Ammann Trail of Bits is publicly disclosing four vulnerabilities that affect wolfSSL: CVE-2022-38152, CVE-2022-38153, CVE-2022-39173, and CVE-2022-42905. The four issues, which have CVSS scores ranging from medium to critical, can all result in a denial of service (DoS). These vulnerabilities have been discovered automatically using the novel protocol fuzzer tlspuffin. This blog post […]

bits blog blog post critical cryptography cve cvss cvss scores denial of service dos fuzzer fuzzing internship projects medium novel protocol result service trail of bits vulnerabilities wolfssl

Visit resource

More from blog.trailofbits.com / Trail of Bits Blog

5 reasons to strive for better disclosure processes 1 week, 2 days ago | blog.trailofbits.com
blog bugs disclosure examples +6
Introducing Ruzzy, a coverage-guided Ruby fuzzer 3 weeks, 5 days ago | blog.trailofbits.com
application security bits bugs code +16
Why fuzzing over formal verification? 1 month ago | blog.trailofbits.com
audits blockchain development fuzzing +3
Streamline your static analysis triage with SARIF Explorer 1 month ago | blog.trailofbits.com
analysis audits explorer extension +8
Read code like a pro with our weAudit VSCode extension 1 month ago | blog.trailofbits.com
audits bugs code codebase +12
Releasing the Attacknet: A new tool for finding bugs in blockchain nodes using chaos testing 1 month ago | blog.trailofbits.com
addresses bits blockchain bugs +17
Secure your blockchain project from the start 1 month, 1 week ago | blog.trailofbits.com
architectures blockchain can design +16
DARPA awards $1 million to Trail of Bits for AI Cyber Challenge 1 month, 1 week ago | blog.trailofbits.com
ai cyber challenge aixcc award awards +14
Out of the kernel, into the tokens 1 month, 2 weeks ago | blog.trailofbits.com
application applications application security audits +19

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

EY GDS Internship Program - SAP, Cyber, IT Consultant or Finance Talents with German language

@ EY | Wrocław, DS, PL, 50-086
View on infosec-jobs.com

Security Architect - 100% Remote (REF1604S)

@ Citizant | Chantilly, VA, United States
View on infosec-jobs.com

Network Security Engineer - Firewall admin (f/m/d)

@ Deutsche Börse | Prague, CZ
View on infosec-jobs.com

Junior Cyber Solutions Consultant

@ Dionach | Glasgow, Scotland, United Kingdom
View on infosec-jobs.com

Senior Software Engineer (Cryptography), Bitkey

@ Block | New York City, United States
View on infosec-jobs.com
View more jobs