First published: Wed Nov 19 2014(Updated: )
wolfssl before 3.2.0 does not properly issue certificates for a server's hostname.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
debian/wolfssl | 4.6.0+p1-0+deb11u2 5.5.4-2+deb12u1 5.7.0-0.3 | |
WolfSSL wolfssl | <3.2.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2014-2901.
The severity level of CVE-2014-2901 is high.
The affected software for CVE-2014-2901 is Wolfssl before version 3.2.0.
The CWE ID for CVE-2014-2901 is CWE-295.
To fix CVE-2014-2901, upgrade to Wolfssl version 3.2.0 or higher.