CVE-2021-38597: Insufficient Verification of Data Authenticity

August 12, 2021 (updated August 23, 2021)

wolfSSL incorrectly skips OCSP verification in certain situations of irrelevant response data that contains the NoCheck extension.

References

nvd.nist.gov/vuln/detail/CVE-2021-38597
www.wolfssl.com/docs/wolfssl-changelog/

Code Behaviors & Features

Detect and mitigate CVE-2021-38597 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →