Bug#1041699: wolfssl: CVE-2023-3724

On Sat, 22 Jul 2023 16:25:36 + "Jacob .." wrote:> Started the process of adding a patch to wolfssl_4.6.0+p1-0+deb11u1.1.dsc. Based on the same upstream commit, I am uploading an unstable fix as NMU so I can forward your upload to proposed-updates.diff -Nru wolfssl-5.5.4/debian/changelog

Bug#1041699:

Thanks Moritz, Started the process of adding a patch to wolfssl_4.6.0+p1-0+deb11u1.1.dsc. Sent from Mail for Windows

Bug#1041699: wolfssl: CVE-2023-3724

Source: wolfssl X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for wolfssl. CVE-2023-3724[0]: | If a TLS 1.3 client gets neither a PSK (pre shared key) extension | nor a KSE (key share extension) when connecting to a