An issue was discovered in the DTLS handshake implementation in wolfSSL before 4.5.0. Clear DTLS application_data messages in epoch 0 do not produce an out-of-order error. Instead, these messages are returned to the application.
References
Link | Resource |
---|---|
https://github.com/wolfSSL/wolfssl/pull/3219 | Third Party Advisory |
https://github.com/wolfSSL/wolfssl/releases/tag/v4.5.0-stable | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-08-21T13:04:34
Updated: 2020-08-21T13:04:34
Reserved: 2020-08-21T00:00:00
Link: CVE-2020-24585
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-08-21T14:15:11.137
Modified: 2020-08-26T19:17:16.880
Link: CVE-2020-24585
JSON object: View
Redhat Information
No data.
CWE