cve 2026 55967

  1. CVE-2026-55967: wolfSSL AES-GCM Streaming Bug Beyond 64 GiB

    CVE-2026-55967 is a wolfSSL vulnerability published on June 25, 2026, affecting wolfSSL versions 4.8.0 through 5.9.1, where AES-GCM streaming APIs failed to reject cumulative single-message sizes above 64 GiB, allowing counter wrap, keystream reuse, and possible plaintext recovery. The broken...