WRITEUP

This patch addresses CVE-2025-66199 in OpenSSL by adding a check to prevent excessive pre-decompression allocation in TLS 1.3 compressed certificate processing. The fix validates the uncompressed certificate length against a maximum threshold to avoid potential denial-of-service (DoS) attacks.