CVE-2022-38153

Name of the Vulnerable Software and Affected Versions wolfSSL version 5.3.0

Description An issue in wolfSSL allows man-in-the-middle attackers or a malicious server to crash TLS 1.2 clients during a handshake. This occurs when an attacker injects a large ticket (more than 256 bytes) into a NewSessionTicket message in a TLS 1.2 handshake, and the client has a non-empty session cache, causing the session cache to free a pointer that points to unallocated memory. It is likely that this issue is also exploitable during TLS 1.3 handshakes between a client and a malicious server, although it cannot be exploited as a man-in-the-middle in TLS 1.3.

Recommendations For wolfSSL version 5.3.0, update to version 5.5.0 or later to resolve the issue. As a temporary workaround, consider disabling the --enable-session-ticket option until a patch is available. Restrict access to the NewSessionTicket message in TLS 1.2 handshakes to minimize the risk of exploitation. Avoid using large tickets (more than 256 bytes) in the NewSessionTicket message until the issue is resolved.