UBUNTU-CVE-2026-3229

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2026-3229

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-3229.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-3229

Upstream

CVE-2026-3229

Published

2026-03-19T21:17:00Z

Modified

2026-05-20T16:25:20.949721664Z

Severity

1.2 (Low) CVSS_V4 - CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/U:Green CVSS Calculator
5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Ubuntu - medium

Summary

[none]

Details

An integer overflow vulnerability existed in the static function wolfssladdtochain, that caused heap corruption when certificate data was written out of bounds of an insufficiently sized certificate buffer. wolfssladdtochain is called by these API: wolfSSLCTXaddextrachaincert, wolfSSLCTXadd1chaincert, wolfSSLadd0chaincert. These API are enabled for 3rd party compatibility features: enable-opensslall, enable-opensslextra, enable-lighty, enable-stunnel, enable-nginx, enable-haproxy. This issue is not remotely exploitable, and would require that the application context loading certificates is compromised.

References

Affected packages

Ubuntu:16.04:LTS

wolfssl

Package

Name: wolfssl
Purl: pkg:deb/ubuntu/wolfssl?arch=source&distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.4.8+dfsg-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "3.4.8+dfsg-1",
            "binary_name": "libcyassl5"
        },
        {
            "binary_version": "3.4.8+dfsg-1",
            "binary_name": "libwolfssl0"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-3229.json"

Ubuntu:18.04:LTS

wolfssl

Package

Name: wolfssl
Purl: pkg:deb/ubuntu/wolfssl?arch=source&distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.10.2+dfsg-2

3.12.0+dfsg-1

3.12.2+dfsg-1

3.13.0+dfsg-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "3.13.0+dfsg-1",
            "binary_name": "libwolfssl15"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-3229.json"

Ubuntu:20.04:LTS

wolfssl

Package

Name: wolfssl
Purl: pkg:deb/ubuntu/wolfssl?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

4.*

4.1.0+dfsg-2

4.2.0+dfsg-1

4.2.0+dfsg-2

4.2.0+dfsg-3

4.3.0+dfsg-2

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "4.3.0+dfsg-2",
            "binary_name": "libwolfssl24"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-3229.json"

Ubuntu:22.04:LTS

wolfssl

Package

Name: wolfssl
Purl: pkg:deb/ubuntu/wolfssl?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

4.*

4.6.0-3

5.*

5.0.0-1

5.1.1-1

5.2.0-1

5.2.0-2

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "5.2.0-2",
            "binary_name": "libwolfssl32"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-3229.json"

Ubuntu:24.04:LTS

wolfssl

Package

Name: wolfssl
Purl: pkg:deb/ubuntu/wolfssl?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.5.4-2

5.5.4-2.1

5.6.4-2

5.6.6-1.2

5.6.6-1.3

5.6.6-1.3build1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "5.6.6-1.3build1",
            "binary_name": "libwolfssl42t64"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-3229.json"

Ubuntu:25.10

wolfssl

Package

Name: wolfssl
Purl: pkg:deb/ubuntu/wolfssl?arch=source&distro=questing

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.7.2-0.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "5.7.2-0.1",
            "binary_name": "libwolfssl42t64"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-3229.json"

Ubuntu:26.04:LTS

wolfssl

Package

Name: wolfssl
Purl: pkg:deb/ubuntu/wolfssl?arch=source&distro=resolute

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.7.2-0.1

5.8.2-1.2

5.8.4-1

5.9.1-0.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "5.9.1-0.1",
            "binary_name": "libwolfssl44"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-3229.json"