Bouncycastle ≫ Legion-of-the-bouncy-castle-java-crytography-api
2 vulnerabilities found.
Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2024-30172
- EPSS 0.14%
- Published 14.05.2024 15:21:53
- Last modified 21.11.2024 09:11:21
An issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature and public key.
7.5
CVE-2016-1000338
- EPSS 0.38%
- Published 01.06.2018 20:29:00
- Last modified 05.05.2025 14:14:28
In Bouncy Castle JCE Provider version 1.55 and earlier the DSA does not fully validate ASN.1 encoding of signature on verification. It is possible to inject extra elements in the sequence making up the signature and still have it validate, which in s...
1