Severity
Moderate
Affected Packages
13
Fixed Packages
12
CVEs
1
An issue was discovered in Bouncy Castle Java TLS API and JSSE Provider before 1.78. Timing-based leakage may occur in RSA based handshakes because of exception processing.
Package | Affected Version |
---|---|
![]() |
< 1.78 |
![]() |
< 1.78 |
![]() |
< 1.78 |
![]() |
< 1.0.19 |
![]() |
< 1.78 |
![]() |
< 1.78 |
![]() |
< 1.78 |
![]() |
< 1.78 |
![]() |
< 1.78 |
![]() |
< 1.78 |
![]() |
< 1.78 |
![]() |
< 2.3.1 |
![]() |
< 2.3.1 |
Package | Fixed Version |
---|---|
![]() |
= 1.78 |
![]() |
= 1.78 |
![]() |
= 1.78 |
![]() |
= 1.0.19 |
![]() |
= 1.78 |
![]() |
= 1.78 |
![]() |
= 1.78 |
![]() |
= 1.78 |
![]() |
= 1.78 |
![]() |
= 1.78 |
![]() |
= 1.78 |
![]() |
= 2.3.1 |
- ID
- MAVEN:GHSA-V435-XC8X-WVR9
- Severity
- moderate
- URL
- https://github.com/advisories/GHSA-v435-xc8x-wvr9
- Published
-
2024-05-14T15:32:54
(2 months ago) - Modified
-
2024-05-14T20:22:06
(2 months ago) - Rights
- Maven Security Team
- Other Advisories
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:maven/org.bouncycastle/bctls-jdk18on | org.bouncycastle |
![]() |
< 1.78 | |||
Fixed | pkg:maven/org.bouncycastle/bctls-jdk18on | org.bouncycastle |
![]() |
= 1.78 | |||
Affected | pkg:maven/org.bouncycastle/bctls-jdk15to18 | org.bouncycastle |
![]() |
< 1.78 | |||
Fixed | pkg:maven/org.bouncycastle/bctls-jdk15to18 | org.bouncycastle |
![]() |
= 1.78 | |||
Affected | pkg:maven/org.bouncycastle/bctls-jdk14 | org.bouncycastle |
![]() |
< 1.78 | |||
Fixed | pkg:maven/org.bouncycastle/bctls-jdk14 | org.bouncycastle |
![]() |
= 1.78 | |||
Affected | pkg:maven/org.bouncycastle/bctls-fips | org.bouncycastle |
![]() |
< 1.0.19 | |||
Fixed | pkg:maven/org.bouncycastle/bctls-fips | org.bouncycastle |
![]() |
= 1.0.19 | |||
Affected | pkg:maven/org.bouncycastle/bcprov-jdk18on | org.bouncycastle |
![]() |
< 1.78 | |||
Fixed | pkg:maven/org.bouncycastle/bcprov-jdk18on | org.bouncycastle |
![]() |
= 1.78 | |||
Affected | pkg:maven/org.bouncycastle/bcprov-jdk15to18 | org.bouncycastle |
![]() |
< 1.78 | |||
Fixed | pkg:maven/org.bouncycastle/bcprov-jdk15to18 | org.bouncycastle |
![]() |
= 1.78 | |||
Affected | pkg:maven/org.bouncycastle/bcprov-jdk15on | org.bouncycastle |
![]() |
< 1.78 | |||
Fixed | pkg:maven/org.bouncycastle/bcprov-jdk15on | org.bouncycastle |
![]() |
= 1.78 | |||
Affected | pkg:maven/org.bouncycastle/bcprov-jdk14 | org.bouncycastle |
![]() |
< 1.78 | |||
Fixed | pkg:maven/org.bouncycastle/bcprov-jdk14 | org.bouncycastle |
![]() |
= 1.78 | |||
Affected | pkg:maven/org.bouncycastle/bcpkix-jdk18on | org.bouncycastle |
![]() |
< 1.78 | |||
Fixed | pkg:maven/org.bouncycastle/bcpkix-jdk18on | org.bouncycastle |
![]() |
= 1.78 | |||
Affected | pkg:maven/org.bouncycastle/bcpkix-jdk15to18 | org.bouncycastle |
![]() |
< 1.78 | |||
Fixed | pkg:maven/org.bouncycastle/bcpkix-jdk15to18 | org.bouncycastle |
![]() |
= 1.78 | |||
Affected | pkg:maven/org.bouncycastle/bcpkix-jdk14 | org.bouncycastle |
![]() |
< 1.78 | |||
Fixed | pkg:maven/org.bouncycastle/bcpkix-jdk14 | org.bouncycastle |
![]() |
= 1.78 | |||
Affected | pkg:maven/BouncyCastle.Cryptography |
![]() |
< 2.3.1 | ||||
Fixed | pkg:maven/BouncyCastle.Cryptography |
![]() |
= 2.3.1 | ||||
Affected | pkg:maven/BouncyCastle |
![]() |
< 2.3.1 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |