CVE-2014-2898

Name of the Vulnerable Software and Affected Versions wolfSSL CyaSSL versions prior to 2.9.4

Description The issue allows remote attackers to have an unspecified impact via multiple calls to the CyaSSL read function, which triggers an out-of-bounds read when an error occurs. This is related to not checking the return code and MAC verification failure.

Recommendations For versions prior to 2.9.4, update to version 2.9.4 or later to resolve the issue. As a temporary workaround, consider adding checks for the return code of the CyaSSL read function and ensuring proper MAC verification to minimize the risk of exploitation.