CVE-2025-11932

Name

CVE-2025-11932

Description

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

Exploits

Forges

GitHub (code, issues), Aports (code, issues)

References

Type	URI
facts@wolfssl.com	https://github.com/wolfSSL/wolfssl/pull/9223

CPE URI	Source package	Min version	Max version
	wolfssl	== 5.8.4	== None
`cpe:2.3:a:wolfssl:wolfssl:5.8.2:::::::*`	wolfssl	== None	== 5.8.2

Source package	Branch	Version	Maintainer	Status
wolfssl	edge-community	5.8.2-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
wolfssl	edge-community	5.7.6-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
wolfssl	edge-community	5.7.4-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
wolfssl	edge-community	5.7.2-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
wolfssl	edge-community	5.7.0-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
wolfssl	edge-community	5.6.6-r0	None	possibly vulnerable
wolfssl	edge-community	5.6.2-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
wolfssl	edge-community	5.5.3-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
wolfssl	edge-community	5.5.1-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
wolfssl	edge-community	5.5.0-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
wolfssl	edge-community	5.4.0-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
wolfssl	3.22-community	5.7.6-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
wolfssl	3.22-community	5.7.4-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
wolfssl	3.22-community	5.7.2-r0	None	possibly vulnerable
wolfssl	3.22-community	5.7.0-r0	None	possibly vulnerable
wolfssl	3.22-community	5.6.6-r0	None	possibly vulnerable
wolfssl	3.22-community	5.6.2-r0	None	possibly vulnerable
wolfssl	3.22-community	5.5.3-r0	None	possibly vulnerable
wolfssl	3.22-community	5.5.1-r0	None	possibly vulnerable
wolfssl	3.22-community	5.5.0-r0	None	possibly vulnerable
wolfssl	3.22-community	5.4.0-r0	None	possibly vulnerable