Description
Out-of-bounds write in the Renesas TSIP TLS 1.3 transcript buffer. In tsip_StoreMessage() the capacity check guarding the fixed message bag (MSGBAG_SIZE) sets an error code but fails to return, so execution falls through to an XMEMCPY that writes past the end of the buffer once the accumulated TLS 1.3 handshake transcript exceeds MSGBAG_SIZE (8 KB), corrupting adjacent heap state and potentially causing a remote denial of service crash. The bag is sized to hold a normal handshake, so this is reached only by an unusually large but valid certificate chain, or by a malicious or man-in-the-middle server sending an oversized handshake message to a client that does not strictly verify the chain. This only affects builds using the Renesas TSIP TLS port (WOLFSSL_RENESAS_TSIP_TLS) as a TLS 1.3 client on Renesas MCUs with TSIP hardware enabled, and is rated High within those builds. All other configurations are unaffected.
Published: 2026-06-25
Score: 8.3 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A buffer overflow occurs in tsip_StoreMessage() within wolfSSL’s Renesas TSIP TLS implementation when the TLS 1.3 handshake transcript grows beyond the fixed 8 KB buffer. The excess data is copied to memory that has already been allocated for the buffer, corrupting adjacent heap objects and causing the client process to crash. This results in a remote denial‑of‑service of the TLS 1.3 client side, since no authentication or validation of the overflow is performed.

Affected Systems

wolfSSL firmware that compiles the Renesas TSIP TLS port (WOLFSSL_RENESAS_TSIP_TLS) as a TLS 1.3 client on Renesas microcontrollers with TSIP hardware enabled is affected. All other wolfSSL builds, non‑TSIP configurations, or server roles are not impacted.

Risk and Exploitability

The CVSS score of 8.3 reflects a high impact. No EPSS data is available and the vulnerability is not listed in CISA’s KEV catalog. The likely attack vector requires a remote adversary to supply a TLS 1.3 handshake containing an unusually large or malicious certificate chain or an oversized handshake message to a client that does not enforce strict chain size limits. Once the overflow occurs, heap corruption leads to a crash, providing a straightforward denial‑of‑service attack path.

Generated by OpenCVE AI on June 25, 2026 at 22:37 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update wolfSSL to the latest release that includes the fix for the Renesas TSIP TLS bug – see the official pull request https://github.com/wolfSSL/wolfssl/pull/10705 for the relevant changes.
  • If TLS 1.3 client mode on Renesas TSIP hardware is not required, disable the WOLFSSL_RENESAS_TSIP_TLS build option so the vulnerable code path is not compiled into the firmware.
  • If a patch cannot be applied immediately, modify the client to validate the maximum certificate chain length and reject handshake messages larger than 8 KB before invoking tsip_StoreMessage().

Generated by OpenCVE AI on June 25, 2026 at 22:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 26 Jun 2026 01:30:00 +0000

Type Values Removed Values Added
First Time appeared Wolfssl
Wolfssl wolfssl
Vendors & Products Wolfssl
Wolfssl wolfssl

Thu, 25 Jun 2026 20:00:00 +0000

Type Values Removed Values Added
Description Out-of-bounds write in the Renesas TSIP TLS 1.3 transcript buffer. In tsip_StoreMessage() the capacity check guarding the fixed message bag (MSGBAG_SIZE) sets an error code but fails to return, so execution falls through to an XMEMCPY that writes past the end of the buffer once the accumulated TLS 1.3 handshake transcript exceeds MSGBAG_SIZE (8 KB), corrupting adjacent heap state and potentially causing a remote denial of service crash. The bag is sized to hold a normal handshake, so this is reached only by an unusually large but valid certificate chain, or by a malicious or man-in-the-middle server sending an oversized handshake message to a client that does not strictly verify the chain. This only affects builds using the Renesas TSIP TLS port (WOLFSSL_RENESAS_TSIP_TLS) as a TLS 1.3 client on Renesas MCUs with TSIP hardware enabled, and is rated High within those builds. All other configurations are unaffected.
Title Renesas TSIP TLS 1.3 transcript buffer out-of-bounds write in tsip_StoreMessage
Weaknesses CWE-393
CWE-787
References
Metrics cvssV4_0

{'score': 8.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Wolfssl Wolfssl
cve-icon MITRE

Status: PUBLISHED

Assigner: wolfSSL

Published:

Updated: 2026-06-25T19:35:21.155Z

Reserved: 2026-06-17T22:10:55.453Z

Link: CVE-2026-55958

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-26T01:15:04Z

Weaknesses