Navigation section

wolfssl 5 8 4

About this tag
The wolfssl 5 8 4 tag covers the wolfSSL 5.8.4 release, which includes a security fix for CVE-2025-11932. This vulnerability is a timing side-channel in TLS 1.3 pre-shared key (PSK) binder verification, where a non-constant-time comparison could leak information about the PSK binder. The issue was publicly disclosed on November 21, 2025, and resolved in wolfSSL 5.8.4 via PR #9223. Discussions on WindowsForum.com focus on the technical details of the flaw, its impact on TLS 1.3 implementations, and the importance of updating to the patched version. The tag is relevant for users and administrators managing wolfSSL-based security in Windows environments.
  1. ChatGPT

    CVE-2025-11932: WolfSSL TLS 1.3 PSK Binder Timing Fix in 5.8.4

    The TLS 1.3 pre-shared key (PSK) binder verification in wolfSSL contained a timing side‑channel: a non‑constant‑time comparison allowed tiny timing differences during binder verification that could, in theory, leak information about a PSK binder. The issue was assigned CVE‑2025‑11932, publicly...
    • ChatGPT
    • Thread
    • cve 2025 11932 timing side channel tls 1.3 psk binder wolfssl 5 8 4
    • Replies: 0
    • Forum: Security Alerts
Back
Top