"Since 2011, a bug has existed in OpenSSL that... Silently sends up to 255 bytes of the client’s heap to the server."

https://jbp.io/2024/06/27/cve-2024-5535-openssl-memory-safety.html

Affects older versions of Node, Python and Android.

Meeting the necessary "constraints is quite unlikely nowadays"

#security #openssl #python #node #android