mbedtls is vulnerable to denial of service. The vulnerability exists through a buffer overread when the dtls server with MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE in use receives a ClientHello message with a cookie whose declared length exceeds the end of the allocated buffer which allows an attacker to cause a crash or information disclosure via error output