SECURITYBLEEPING COMPUTER
Critical flaw in wolfSSL library enables forged certificate use
A critical vulnerability in the wolfSSL SSL/TLS library allows attackers to bypass certificate verification by improperly checking ECDSA signatures' hash algorithms or sizes. The flaw could enable forged certificate usage, compromising secure communications.