Debian dla-4683 : libwolfssl-dev - security update

critical Nessus Plugin ID 326925

Synopsis

The remote Debian host is missing one or more security-related updates.

Description

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4683 advisory.

- ----------------------------------------------------------------------- Debian LTS Advisory DLA-4683-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta July 15, 2026 https://wiki.debian.org/LTS
- -----------------------------------------------------------------------

Package : wolfssl Version : 5.5.4-2+deb12u3 CVE ID : CVE-2026-5194 CVE-2026-6092 CVE-2026-6094 CVE-2026-6325 CVE-2026-6329 CVE-2026-6331 CVE-2026-6450 CVE-2026-6678 CVE-2026-6681 CVE-2026-6731 CVE-2026-7511 CVE-2026-55961 CVE-2026-55962 CVE-2026-55967

Multiple vulnerabilities were discovered in wolfSSL, a lightweight, portable, C-language-based SSL/TLS library, which could result in signature forgery, authentication bypass, information disclosure, or denial of service.

CVE-2026-5194

Missing hash/digest size and OID checks allowed digests smaller than appropriate for the relevant key type to be accepted during ECDSA certificate signature verification, weakening ECDSA certificate-based authentication when EdDSA or ML-DSA support was also enabled.

CVE-2026-6092

When configured with HAVE_ENCRYPT_THEN_MAC, the TLS resumption path could fall back to MAC-then-Encrypt instead of enforcing Encrypt-then-MAC.

CVE-2026-6094

A heap buffer over-read in wc_PKCS7_DecodeEnvelopedData when parsing crafted PKCS#7 EnvelopedData could be triggered by attacker-supplied data delivered via S/MIME or CMS.

CVE-2026-6325

An out-of-bounds write in SetSuitesHashSigAlgo when processing an oversized signature algorithms list allowed a write past the bounds of the destination buffer.

CVE-2026-6329

PKCS#12 MAC verification compared the computed HMAC against the stored MAC using an attacker-controlled length, allowing a truncated or zero-length MAC to be accepted and defeating the integrity protection of the MAC.

CVE-2026-6331

An HMAC zero-length tag forgery in EVP_DigestVerifyFinal allowed a truncated or empty tag to be accepted as a valid signature, because the supplied length was only checked not to exceed the MAC length.

CVE-2026-6450

A CRL critical extension bypass in ParseCRL_Extensions allowed a crafted CRL carrying an unhandled critical extension to be accepted.
This only affects builds with CRL support enabled.

CVE-2026-6678

An integer underflow in wc_PKCS7_DecryptOri when handling crafted OtherRecipientInfo led to incorrect length handling during decryption.

CVE-2026-6681

The PKCS#7 decode path ignored the caller-supplied output buffer size (outputSz), allowing decoded content to be written past the bounds of the provided buffer.

CVE-2026-6731

An X.509 name constraint bypass allowed a certificate whose Subject Common Name violated an issuing CA's DNS name constraints to be accepted when the CN was treated as a DNS-type name.

CVE-2026-7511

A PKCS7_verify signer confusion issue meant the signer associated with a signature was not correctly bound, permitting a forged signature to be accepted.

CVE-2026-55961

wolfSSL_PKCS7_verify() returned success for a degenerate (certs-only) PKCS#7 object containing no signer, so a bundle carrying no valid signature could be reported as verified. This only affects OpenSSL compatibility builds.

CVE-2026-55962

A TLS 1.3 post-handshake authentication issue allowed a server to accept a client's Finished message without the client having sent a Certificate and CertificateVerify. This only affects TLS 1.3 servers configured with and actively using post-handshake authentication.

CVE-2026-55967

AES-GCM encryption/decryption with extremely large cumulative single message sizes (>64 GiB) were not properly rejected by the streaming APIs, allowing counter wrap, keystream reuse and consequent plaintext recovery.

For Debian 12 bookworm, these problems have been fixed in version 5.5.4-2+deb12u3.

We recommend that you upgrade your wolfssl packages.

For the detailed security status of wolfssl please refer to its security tracker page at:
https://security-tracker.debian.org/tracker/wolfssl

Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Upgrade the libwolfssl-dev packages.

See Also

https://packages.debian.org/source/bookworm/wolfssl

https://security-tracker.debian.org/tracker/CVE-2026-5194

https://security-tracker.debian.org/tracker/CVE-2026-55961

https://security-tracker.debian.org/tracker/CVE-2026-55962

https://security-tracker.debian.org/tracker/CVE-2026-55967

https://security-tracker.debian.org/tracker/CVE-2026-6092

https://security-tracker.debian.org/tracker/CVE-2026-6094

https://security-tracker.debian.org/tracker/CVE-2026-6325

https://security-tracker.debian.org/tracker/CVE-2026-6329

https://security-tracker.debian.org/tracker/CVE-2026-6331

https://security-tracker.debian.org/tracker/CVE-2026-6450

https://security-tracker.debian.org/tracker/CVE-2026-6678

https://security-tracker.debian.org/tracker/CVE-2026-6681

https://security-tracker.debian.org/tracker/CVE-2026-6731

https://security-tracker.debian.org/tracker/CVE-2026-7511

https://security-tracker.debian.org/tracker/source-package/wolfssl

Plugin Details

Severity: Critical

ID: 326925

File Name: debian_DLA-4683.nasl

Version: 1.1

Type: Local

Agent: unix

Published: 7/15/2026

Updated: 7/15/2026

Supported Sensors: Continuous Assessment, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.3

Percentile: 98.44

CVSS v2

Risk Factor: High

Base Score: 9.4

Temporal Score: 7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:C

CVSS Score Source: CVE-2026-6094

CVSS v3

Risk Factor: Critical

Base Score: 9.1

Temporal Score: 7.9

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

CVSS v4

Risk Factor: Critical

Base Score: 9.3

Threat Score: 7.5

Threat Vector: CVSS:4.0/E:U

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:L/SA:L

CVSS Score Source: CVE-2026-5194

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:libwolfssl35, p-cpe:/a:debian:debian_linux:libwolfssl-dev, cpe:/o:debian:debian_linux:12.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Exploit Ease: No known exploits are available

Patch Publication Date: 7/15/2026

Vulnerability Publication Date: 4/9/2026

Reference Information

CVE: CVE-2026-5194, CVE-2026-55961, CVE-2026-55962, CVE-2026-55967, CVE-2026-6092, CVE-2026-6094, CVE-2026-6325, CVE-2026-6329, CVE-2026-6331, CVE-2026-6450, CVE-2026-6678, CVE-2026-6681, CVE-2026-6731, CVE-2026-7511