News

OpenSSL Fixes HollowByte Memory Exhaustion Bug

  • Pierluigi Paganini--Securityaffairs.com
  • published date: 2026-07-18 18:24:32 UTC

Okta disclosed HollowByte, an 11-byte OpenSSL flaw that lets remote attackers exhaust server memory and trigger denial-of-service attacks. Okta’s Red Team disclosed a denial-of-service vulnerability in OpenSSL they named HollowByte, and the attack payload is …

OpenSSL Fixes HollowByte Memory Exhaustion Bug Okta’s Red Team disclosed a denial-of-service vulnerability in OpenSSL they named HollowByte, and the attack payload is exactly 11 bytes. A remote, una… [+3246 chars]