org.bouncycastle:bcprov-ext-jdk15@1.45 vulnerabilities
-
latest version
1.46
-
first published
15 years ago
-
latest version published
13 years ago
-
licenses detected
- [1.43,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.bouncycastle:bcprov-ext-jdk15 package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.bouncycastle:bcprov-ext-jdk15 is a Java implementation of cryptographic algorithms. Affected versions of this package are vulnerable to Cryptographic Issues. The TLS implementation does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, a related issue to CVE-2013-0169. How to fix Cryptographic Issues? Upgrade |
[,1.48)
|