CVE-2023-24609

Name of the Vulnerable Software and Affected Versions Matrix SSL versions 4.x through 4.6.0 Rambus TLS Toolkit (affected versions not specified)

Description The issue is related to a length-subtraction integer overflow for Client Hello Pre-Shared Key extension parsing in the TLS 1.3 server. This can cause an attacked device to calculate an SHA-2 hash over at least 65 KB in RAM. With a large number of crafted TLS messages, the CPU becomes heavily loaded. The functions tls13VerifyBinder and tls13TranscriptHashUpdate are involved in this process.

Recommendations For Matrix SSL versions 4.x through 4.6.0, consider disabling the TLS 1.3 server functionality until a patch is available. For Rambus TLS Toolkit, at the moment, there is no information about a newer version that contains a fix for this vulnerability.