Your message dated Sat, 04 Jul 2026 16:25:39 +0000
with message-id <[email protected]>
and subject line Bug#1140765: fixed in wolfssl 5.9.2-1
has caused the Debian Bug report #1140765,
regarding wolfssl: CVE-2026-6091 CVE-2026-6094 CVE-2026-6291 CVE-2026-55961 
CVE-2026-55967
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
1140765: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1140765
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: wolfssl
Version: 5.9.1-0.1
Severity: grave
Tags: security upstream
Justification: user security hole
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>

Hi,

The following vulnerabilities were published for wolfssl, they should
be fixed in 5.9.2, please verify again the referenced pull request in
the security-tracker.

CVE-2026-6091[0]:
| Partial-chain certificate verification may accept chains that
| terminate at a peer-supplied, untrusted intermediate certificate
| rather than a trusted anchor. An attacker could present a chain that
| ends at an intermediate they control and have it accepted as valid.
| This affects the OpenSSL compatibility certificate-path-building
| path (wolfSSL_X509_verify_cert / X509_STORE, OPENSSL_EXTRA) when the
| X509_V_FLAG_PARTIAL_CHAIN verify flag is enabled.


CVE-2026-6094[1]:
| Heap buffer overread in wc_PKCS7_DecodeEnvelopedData when parsing
| crafted PKCS7 EnvelopedData. This could theoretically be triggered
| by attacker-supplied data delivered via S/MIME or CMS.


CVE-2026-6291[2]:
| Bleichenbacher padding oracle in PKCS#7 KTRI decryption. When
| decrypting PKCS#7 EnvelopedData using RSA PKCS#1 v1.5 key transport,
| wolfSSL returned distinguishable error codes depending on whether
| RSA padding validation failed versus whether the decrypted content
| was malformed. An attacker able to submit crafted EnvelopedData
| messages and observe error responses could use this as a padding
| oracle to incrementally recover the encrypted Content Encryption Key
| (CEK). The fix generates a deterministic pseudo-random fake CEK on
| padding failure (via HMAC-SHA256) and proceeds with decryption
| identically, using constant-time operations throughout, so that all
| failure paths produce the same error regardless of padding validity.


CVE-2026-55961[3]:
| wolfSSL_PKCS7_verify() returning success for a degenerate (certs-
| only) PKCS#7 object that contains no signer. Such an object has
| empty signerInfos, so the underlying signed-data verification
| succeeds without authenticating any content. The compatibility-layer
| verify path now rejects the object when no signer signature has
| actually been verified, so a PKCS#7 carrying no valid signature is
| no longer reported as verified. This is enforced regardless of the
| PKCS7_NOVERIFY flag, which only suppresses signer certificate chain
| validation and was never intended to waive the requirement that a
| signature exist. Only affects OpenSSL compatibility builds that call
| the PKCS7_verify() compatibility API on potentially degenerate
| PKCS#7 bundles.


CVE-2026-55967[4]:
| AES-GCM encryption/decryption with extremely large cumulative single
| message sizes (>64 GiB) were not properly rejected by the streaming
| APIs, allowing counter wrap, keystream reuse, and consequent
| plaintext recovery.


If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2026-6091
    https://www.cve.org/CVERecord?id=CVE-2026-6091
[1] https://security-tracker.debian.org/tracker/CVE-2026-6094
    https://www.cve.org/CVERecord?id=CVE-2026-6094
[2] https://security-tracker.debian.org/tracker/CVE-2026-6291
    https://www.cve.org/CVERecord?id=CVE-2026-6291
[3] https://security-tracker.debian.org/tracker/CVE-2026-55961
    https://www.cve.org/CVERecord?id=CVE-2026-55961
[4] https://security-tracker.debian.org/tracker/CVE-2026-55967
    https://www.cve.org/CVERecord?id=CVE-2026-55967

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

--- End Message ---
--- Begin Message ---
Source: wolfssl
Source-Version: 5.9.2-1
Done: Jacob Barthelmeh <[email protected]>

We believe that the bug you reported is fixed in the latest version of
wolfssl, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Jacob Barthelmeh <[email protected]> (supplier of updated wolfssl package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 26 Jun 2026 15:34:18 -0600
Source: wolfssl
Binary: libwolfssl-dev libwolfssl45 libwolfssl45-dbgsym
Architecture: source amd64
Version: 5.9.2-1
Distribution: unstable
Urgency: medium
Maintainer: Jacob Barthelmeh <[email protected]>
Changed-By: Jacob Barthelmeh <[email protected]>
Description:
 libwolfssl-dev - Development files for the wolfSSL encryption library
 libwolfssl45 - wolfSSL encryption library
Closes: 1140765 1140815
Changes:
 wolfssl (5.9.2-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fix for CVE-2026-11310, CVE-2026-11999, CVE-2026-6679, CVE-2026-55958,
     CVE-2026-55960, CVE-2026-55961, CVE-2026-6731, CVE-2026-6091,
     CVE-2026-6094, CVE-2026-6329, CVE-2026-6330, CVE-2026-8720,
     CVE-2026-10097, CVE-2026-10098, CVE-2026-10592, CVE-2026-7532,
     CVE-2026-6291, CVE-2026-7511, CVE-2026-11703, CVE-2026-55962,
     CVE-2026-55964, CVE-2026-6092, CVE-2026-6331, CVE-2026-6681,
     CVE-2026-10512, CVE-2026-6678, CVE-2026-7531, CVE-2026-6325,
     CVE-2026-6412, CVE-2026-6450, CVE-2026-12340, CVE-2026-55967
     (Closes: #1140765, #1140815)
 .
   [ Bastian Germann ]
   * Revert "Fix PKCS#7 verification" (no longer needed for Debian packages)
Checksums-Sha1:
 ed12848294b88ffd13f051ecb9a6e22ec0ae925f 1994 wolfssl_5.9.2-1.dsc
 ed37005e913f819adaee5878e25d6a460a60fd87 28078586 wolfssl_5.9.2.orig.tar.gz
 89688bd0ad635df17893491ca302e79c849f5d88 488 wolfssl_5.9.2.orig.tar.gz.asc
 fb83c5c62619bfc7c28dff234df85745daa6fb13 33580 wolfssl_5.9.2-1.debian.tar.xz
 7bbefc45cfb88d563541e0b0cc6043967125110e 1787908 
libwolfssl-dev_5.9.2-1_amd64.deb
 65e16ac5a661c37ca7a8eb33ade4adcf80bdc674 3305460 
libwolfssl45-dbgsym_5.9.2-1_amd64.deb
 86b516b373755e21146c12363aedd7028bd3fc7c 1189528 libwolfssl45_5.9.2-1_amd64.deb
 640c3971f522bc90aaf5366a939fb2186cfbaf79 6749 wolfssl_5.9.2-1_amd64.buildinfo
Checksums-Sha256:
 6fc35cea9c1685d1450ef775a8e70c3d446d5081b7988e98f9a6c58e592fe42f 1994 
wolfssl_5.9.2-1.dsc
 2f4ef3d4fd387a9b3191d36a6316d69116c46ff69bb9583b6c82b36d7b8ca114 28078586 
wolfssl_5.9.2.orig.tar.gz
 952b64ced70d37420b6d2d8aea2696001209488bb1269ff6bd8af30bf1dc8ef3 488 
wolfssl_5.9.2.orig.tar.gz.asc
 da13ab631f59b6eeea2633e799e6b19766ddcf4aa887bd3c8b7c037b2e2ae9ef 33580 
wolfssl_5.9.2-1.debian.tar.xz
 b0d280c9f27642857cf352ee4d1422e7fdf7abb5571555bb176cb635f88c3a10 1787908 
libwolfssl-dev_5.9.2-1_amd64.deb
 6ee6a5bf45e7846c75f4987ca2e2caab62a313d499556f006c618b938c41a12c 3305460 
libwolfssl45-dbgsym_5.9.2-1_amd64.deb
 03aaa66e7edf41807edd5b318bc789cf5dbd3885de8f046b613d1ab26e233fbe 1189528 
libwolfssl45_5.9.2-1_amd64.deb
 8662cd5f537d7c09e043a6e7e903c5b1a9373fd39943e116267d40b3a5aee9bc 6749 
wolfssl_5.9.2-1_amd64.buildinfo
Files:
 999398f4dc0a14f6955d747d79162d5a 1994 libs optional wolfssl_5.9.2-1.dsc
 880765fbb83c8dbcd78bdeffdc8bcbe5 28078586 libs optional 
wolfssl_5.9.2.orig.tar.gz
 2e0dddc7f12e26f24e7d5f0d9f738414 488 libs optional 
wolfssl_5.9.2.orig.tar.gz.asc
 e825f01203c0f684a7ba3f97817a66b5 33580 libs optional 
wolfssl_5.9.2-1.debian.tar.xz
 727281a32d5247a92bb008e9e42b1779 1787908 libdevel optional 
libwolfssl-dev_5.9.2-1_amd64.deb
 c36a40c0b3ad7ee723550e70762d2440 3305460 debug optional 
libwolfssl45-dbgsym_5.9.2-1_amd64.deb
 936d6e4888585d01285366a174a72969 1189528 libs optional 
libwolfssl45_5.9.2-1_amd64.deb
 9704b83b01961c15ed9fe986aa31babb 6749 libs optional 
wolfssl_5.9.2-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=/XAQ
-----END PGP SIGNATURE-----

Attachment: pgpGPD8F9LWcL.pgp
Description: PGP signature


--- End Message ---

Reply via email to