GHSA-576m-xh9m-c774LowCVSS 5.3

When HAVE_ENCRYPT_THEN_MAC is configured, the implementation could fall back to MAC-then-Encrypt...

Published
June 26, 2026
Last Modified
June 27, 2026

🔗 CVE IDs covered (1)

📋 Description

When HAVE_ENCRYPT_THEN_MAC is configured, the implementation could fall back to MAC-then-Encrypt rather than enforcing Encrypt-then-MAC.

🔗 References (4)