Handshakes which used Encrypted Client Hello could be de-anonymized by a passive network observer due to a disclosure of pre-shared key identities in the unencrypted client hello.
{
"url": "https://pkg.go.dev/vuln/GO-2026-5856",
"review_status": "REVIEWED"
}{
"imports": [
{
"path": "crypto/tls",
"symbols": [
"Conn.Handshake",
"Conn.HandshakeContext",
"Conn.Read",
"Conn.Write",
"Dial",
"DialWithDialer",
"Dialer.Dial",
"Dialer.DialContext",
"QUICConn.HandleData",
"QUICConn.SendSessionTicket",
"QUICConn.Start",
"clientHelloMsg.marshalMsg"
]
}
]
}