bouncycastle:bcprov-jdk15@136 vulnerabilities
-
latest version
140
-
first published
19 years ago
-
latest version published
16 years ago
-
licenses detected
- [124,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the bouncycastle:bcprov-jdk15 package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.| Vulnerability | Vulnerable Version |
|---|---|
bouncycastle:bcprov-jdk15 is a Java implementation of cryptographic algorithms. Affected versions of this package are vulnerable to Information Exposure. An attacker can exploit a Bleichenbacher vulnerability in simple RSA CMS signatures without signed attributes. How to fix Information Exposure? Upgrade |
[,140)
|
bouncycastle:bcprov-jdk15 is a Java implementation of cryptographic algorithms. Affected versions of this package are vulnerable to Cryptographic Issues. The TLS implementation does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, a related issue to CVE-2013-0169. How to fix Cryptographic Issues? There is no fixed version for |
[0,)
|