Blog - wolfSSL

wolfSSL 5.8.4 Now Available

November 21, 2025November 21, 2025

wolfSSL 5.8.4 introduces several updates, including the addition of a GPLv3 exceptions list. This allows specific GPLv3-licensed codebases linking against wolfSSL to continue using wolfSSL under GPLv2. Current GPLv3 Exceptions: MariaDB Server MariaDB Client Libraries OpenVPN-NL Fetchmail OpenVPN Security Fixes This release includes multiple fixes across TLS 1.2, TLS 1.3, X25519, XChaCha20-Poly1305, and PSK processing. […]

January 22, 2026January 14, 2026

We’re pleased to announce improvements to wolfSSL’s Windows CE support through PR #8709, which addresses critical compatibility issues when building with Visual Studio 2008 for Windows CE 6.0 and 7.0 platforms. Download wolfSSL → Background Windows CE (Windows Embedded Compact) remains an important platform for many embedded and industrial applications, particularly in legacy systems requiring […]

January 21, 2026January 14, 2026

Affected Users: Users of wolfSSL builds that use the C implementation of Curve25519 for private key operations. This does not affect builds using assembly-optimized implementations (ARM or Intel), the small footprint Curve25519 build, or hardware offload implementations. Summary: A potential side-channel vulnerability was identified in the C implementation of Curve25519 private key operations in wolfSSL. […]

January 20, 2026January 7, 2026

wolfSSL 5.8.2 has enhanced the wc_PKCS12_create() function to support modern AES encryption algorithms for PKCS#12 files. This update enables stronger security for protecting private keys and certificates. What Changed PKCS#12 files are commonly used to store cryptographic objects like private keys, certificates, and certificate chains. wolfSSL 5.8.2 supports modern AES encryptions for PKCS#12 instead of […]

January 19, 2026January 19, 2026

wolfSSL JNI/JSSE 1.16.0 is now available for download! This release contains a number of bug fixes and changes to the JNI and JSSE layers. wolfSSL JNI/JSSE allows for use of the native wolfSSL SSL/TLS library from Java. The thin JNI wrapper can be used for direct JNI calls into native wolfSSL, or the JSSE provider […]

January 19, 2026January 14, 2026

Join us on January 21 at 9:00 AM PT for Getting Started with wolfSSH, a technical webinar presented by Jacob Barthelmeh, Senior Software Engineer at wolfSSL. This session introduces the SSH protocol and explains how wolfSSH provides a secure, lightweight SSH implementation designed for performance, portability, and resource-constrained embedded systems. Register Now: Getting Started with […]

January 16, 2026January 7, 2026

The latest enhancement to wolfSSL’s ML-DSA (Module-Lattice-Based Digital Signature Algorithm) implementation solidifies interoperability with OpenSSL-generated cryptographic keys. This update introduces support for importing ML-DSA private keys that have been encoded using OpenSSL’s DER format. The new functionality extends the ASN.1 parsing logic to recognize and correctly decode an ASN.1 encoding structure that OpenSSL uses for […]

January 15, 2026January 14, 2026

As the cybersecurity landscape prepares for the advent of quantum computing, the Trusted Platform Module (TPM) ecosystem is evolving to meet these new challenges. wolfSSL is proud to announce that wolfTPM now includes initial support for the TPM 2.0 Library Specification v1.85, bringing Post-Quantum Cryptography (PQC) capabilities to your hardware-backed security workflows. This update introduces […]

January 14, 2026January 7, 2026

Affected Users: Applications using wolfSSL’s OpenSSL compatibility layer before wolfSSL version 5.8.2 that call both RAND_bytes() and fork() operations. This does not affect internal TLS operations or applications that do not explicitly use RAND_bytes(). Summary: A vulnerability was discovered in wolfSSL’s OpenSSL compatibility layer where the RAND_poll() function was not behaving as expected, leading to […]

January 13, 2026January 7, 2026

Affected Users: Users performing ECC or Ed25519 signature verification operations on devices that may be susceptible to fault injection attacks, particularly in security-critical applications such as secure boot implementations. Summary: A potential vulnerability to fault injection attacks was identified in wolfSSL’s ECC and Ed25519 signature verification operations. Fault injection is a sophisticated physical attack technique […]

January 12, 2026January 12, 2026

Look at that! wolfSSH had another release. New year, new version. Welcome to wolfSSH v1.4.22. This is mainly a bug fix release. We’ve improved interoperability with other implementations of SSH. We’ve improved the build process with several IDEs, Zephyr, and LwIP. We also added an SFTP client example for the Renesas RX72N platform. There is […]

1 2 3 4 … 218 219 220

RECENT BLOG NEWS

wolfSSL 5.8.4 Now Available

Enhanced Windows CE Support in wolfSSL

Vulnerability Disclosure: wolfSSL CVE-2025-7396

PKCS#12 Support Enhancement: AES Encryption for Keys and Certificates

wolfSSL JNI/JSSE 1.16.0 Now Available

Getting Started with wolfSSH

ML-DSA OpenSSL Interoperability

wolfTPM – Add TPM 2.0 v1.85 PQC Post-Quantum Support

Vulnerability Disclosure: wolfSSL CVE-2025-7394

Vulnerability Disclosure: wolfSSL Fault Injection Attack on ECC and Ed25519 Verify Operations

wolfSSH v1.4.22 Release

Weekly updates

Archives

RECENT BLOG NEWS

Posts navigation

Weekly updates

Archives