Yueh-Hsun Lin

Researcher fromKNOX Security, Samsung Research America
#19704of 53,632
13.3Total CVSS
Vulnerabilities · 2
Medium
1
High
1
PT-2017-18584
7.8
2017-05-09
Wolfssl · Wolfssl · CVE-2017-8854
**Name of the Vulnerable Software and Affected Versions** wolfSSL versions prior to 3.10.2 **Description** The issue is related to an out-of-bounds memory access that occurs when loading crafted DH parameters. This can lead to a buffer overflow, which is triggered by a malformed temporary DH file. **Recommendations** For versions prior to 3.10.2, update to version 3.10.2 or later to resolve the issue.
PT-2017-16881
5.5
2017-02-23
Wolfssl · Wolfssl · CVE-2017-6076
**Name of the Vulnerable Software and Affected Versions** wolfSSL versions prior to 3.10.2 **Description** The issue makes it easier for a malicious user with access to view cache on a machine to extract RSA key information due to the function fp mul comba. **Recommendations** For versions prior to 3.10.2, update to version 3.10.2 or later to resolve the issue.