pkg:maven/org.bouncycastle/bctls-jdk14

Type maven
Namespace org.bouncycastle
Name bctls-jdk14

Known advisories, vulnerabilities and fixes for org.bouncycastle/bctls-jdk14 package.

Repository
https://mvnrepository.com/artifact/org.bouncycastle/bctls-jdk14
Moderate 3
Type Version Distribution # CVEs # Advisory ID Title Severity Published
Affected < 1.78 CVE-2024-29857
maven MAVEN:GHSA-8XFC-GM6G-VGPV Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation. moderate 2024-05-14T15:32:54
(5 weeks ago)
Fixed = 1.78 CVE-2024-29857
maven MAVEN:GHSA-8XFC-GM6G-VGPV Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation. moderate 2024-05-14T15:32:54
(5 weeks ago)
Affected < 1.78 CVE-2024-30172
maven MAVEN:GHSA-M44J-CFRM-G8QC Bouncy Castle crafted signature and public key can be used to trigger an infinite loop moderate 2024-05-14T15:32:54
(5 weeks ago)
Fixed = 1.78 CVE-2024-30172
maven MAVEN:GHSA-M44J-CFRM-G8QC Bouncy Castle crafted signature and public key can be used to trigger an infinite loop moderate 2024-05-14T15:32:54
(5 weeks ago)
Affected < 1.78 CVE-2024-30171
maven MAVEN:GHSA-V435-XC8X-WVR9 Bouncy Castle affected by timing side-channel for RSA key exchange ("The Marvin Attack") moderate 2024-05-14T15:32:54
(5 weeks ago)
Fixed = 1.78 CVE-2024-30171
maven MAVEN:GHSA-V435-XC8X-WVR9 Bouncy Castle affected by timing side-channel for RSA key exchange ("The Marvin Attack") moderate 2024-05-14T15:32:54
(5 weeks ago)
Loading...