Flyroom

**Name of the Vulnerable Software and Affected Versions** wolfSSL versions prior to 4.1.0 **Description** The issue is related to a missing sanity check of memory accesses in parsing ASN.1 certificate data while handshaking, resulting in a one-byte heap-based buffer over-read. This occurs in the CheckCertSignature ex function in wolfcrypt/src/asn.c. **Recommendations** For versions prior to 4.1.0, update to version 4.1.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the CheckCertSignature ex function in wolfcrypt/src/asn.c until a patch is available.

**Name of the Vulnerable Software and Affected Versions** wolfSSL version 4.1.0 **Description** The issue is related to a one-byte heap-based buffer over-read in the DecodeCertExtensions function located in wolfcrypt/src/asn.c. This occurs because the reading of the ASN BOOLEAN byte is mishandled for a crafted DER certificate in the GetLength ex function. **Recommendations** For wolfSSL version 4.1.0, consider updating to a newer version that addresses this issue, as the current version has a heap-based buffer over-read that could be exploited. At the moment, there is no information about a newer version that contains a fix for this vulnerability.