Category: wolfSSH

FATFS Enhancements in wolfSSH 1.4.21

FATFS Ready in wolfSSH 1.4.21 wolfSSH 1.4.21 is now available, and this release focuses on making FATFS-backed SFTP deployments easier to ship, test, and maintain. Since tagging v1.4.20-stable, we invested in reliability improvements, developer tooling, and CI coverage that harden FATFS integration for embedded SSH gateways, industrial control systems, and secure file transfer clients. This […]

Read MoreMore Tag

Keyboard-Interactive (RFC 4256) lands in wolfSSH — flexible SSH authentication for embedded, IoT, and server use

At wolfSSL we build compact, high-performance security libraries for systems that range from tiny MCUs to cloud servers. Our SSHv2 library, wolfSSH, now supports Keyboard-Interactive authentication (RFC 4256), enabling rich challenge/response and multi-step logins without changing your client code. Keyboard-Interactive first shipped in wolfSSH 1.4.20 and has since seen API refinements to simplify how applications […]

Read MoreMore Tag

wolfSSH 1.4.21 Released

Version 1.4.21 of wolfSSH is now available! This update includes a critical security fix, improved interoperability, and enhancements for embedded and hardware-backed key use cases. Security Updates This release addresses two security issues: CVE-2025-11625: Fixed a client-side host verification bypass that could expose credentials (PR#840). CVE-2025-11624: Fixed an SFTP server stack overflow triggered by malformed […]

Read MoreMore Tag

wolfSSH 1.4.20: Enhanced Features and Stability

The wolfSSL team has released wolfSSH version 1.4.20, introducing some new features and nice fixes! New Features: DH Group 16 and HMAC-SHA2-512 Support: This addition gives more options for algorithms used when connecting and more interoperability with other implementations. Keyboard-Interactive Authentication: Providing a more versatile authentication method implementing RFC 4256. Enhancements and Fixes: Memory Management […]

Read MoreMore Tag

What’s New in wolfSSH 1.4.19

The latest version of wolfSSH, 1.4.19, brings improvements, stability fixes and an additional feature! DH Group 14 with SHA-256 Key Exchange (KEX) support was added in with this release. Along with this new feature some of the improvements that were added are: CI testing, macro guards around TTY modes, use of wolfSSL kyber implementation, and […]

Read MoreMore Tag

wolfSSH with X.509 Certificates

Did you know wolfSSH can use X.509 certificates in place of SSH public keys? wolfSSH supports RFC 6187, “X.509v3 Certificates for Secure Shell Authentication”. This uses wolfSSL’s certificate management for TLS, so the certificates may be checked against CRLs and OCSP. wolfSSH has been used in applications as a server where it needed to validate […]

Read MoreMore Tag

wolfSSH VxWorks FIPS 140-3

Do you need SSH support for an embedded device running VxWorks and do you have a FIPS 140-3 requirement? wolfSSL has what you need: wolfSSH, an embedded SSH library running on top of our wolfCrypt FIPS library, and the wolfCrypt module holds the world’s first SP800-140Br1 FIPS 140-3 Validated, Certificate #4718. While full FIPS 140-3 […]

Read MoreMore Tag

Why wolfSSH is Immune to the regreSSHion

Recently, Qualys found an exploit in OpenSSH’s sshd server application that they named regreSSHion. This exploit lets attackers run arbitrary code by exploiting a race condition in a signal handler. wolfSSH is not a port or fork of OpenSSH. It is written from scratch by wolfSSL Inc. While wolfSSHd is using the same alarm signal […]

Read MoreMore Tag

Posts navigation

1 2