Out-of-bounds write in wolfSSL - CVE-2026-55958
Published: July 1, 2026
wolfSSL
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a denial of service.
The vulnerability exists due to an out-of-bounds write in tsip_StoreMessage() when processing an oversized TLS 1.3 handshake transcript. A remote attacker can send an unusually large but valid certificate chain or oversized handshake message to cause a denial of service.
Only builds using the Renesas TSIP TLS port as a TLS 1.3 client on Renesas MCUs with TSIP hardware enabled are affected.