Dossier
wolfSSL
Coverage of wolfSSL in the Nexus archive.
- wolfSSL releases a new product; wolfCOSE a zero alloc C embbedded COSE stack
wolfSSL has released a new product called wolfCOSE, which is a zero alloc C embedded COSE stack. The article is available on GitHub with a Hacker News discussion link.
- Critical flaw in wolfSSL library enables forged certificate use
A critical vulnerability in the wolfSSL SSL/TLS library allows attackers to bypass certificate verification by improperly checking ECDSA signatures' hash algorithms or sizes. The flaw could enable forged certificate usage, compromising secure communications.