Type
maven
Namespace
org.bouncycastle
Name
bctls-jdk14
Known advisories, vulnerabilities and fixes for org.bouncycastle/bctls-jdk14 package.
Moderate
3
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | < 1.78 |
CVE-2024-29857
|
MAVEN:GHSA-8XFC-GM6G-VGPV | Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation. | moderate |
2024-05-14T15:32:54
(2 months ago) |
|
Fixed | = 1.78 |
CVE-2024-29857
|
MAVEN:GHSA-8XFC-GM6G-VGPV | Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation. | moderate |
2024-05-14T15:32:54
(2 months ago) |
|
Affected | < 1.78 |
CVE-2024-30172
|
MAVEN:GHSA-M44J-CFRM-G8QC | Bouncy Castle crafted signature and public key can be used to trigger an infinite loop | moderate |
2024-05-14T15:32:54
(2 months ago) |
|
Fixed | = 1.78 |
CVE-2024-30172
|
MAVEN:GHSA-M44J-CFRM-G8QC | Bouncy Castle crafted signature and public key can be used to trigger an infinite loop | moderate |
2024-05-14T15:32:54
(2 months ago) |
|
Affected | < 1.78 |
CVE-2024-30171
|
MAVEN:GHSA-V435-XC8X-WVR9 | Bouncy Castle affected by timing side-channel for RSA key exchange ("The Marvin Attack") | moderate |
2024-05-14T15:32:54
(2 months ago) |
|
Fixed | = 1.78 |
CVE-2024-30171
|
MAVEN:GHSA-V435-XC8X-WVR9 | Bouncy Castle affected by timing side-channel for RSA key exchange ("The Marvin Attack") | moderate |
2024-05-14T15:32:54
(2 months ago) |