from 0, < 1.60-1
HIGH8.1CVE-2020-28052Logic error in Legion of the Bouncy Castle BC Java from 0, < 1.65-2
HIGH7.5In Bouncy Castle JCE Provider the DSA key pair generator generates a weak private key if used with default values
from 0, < 1.56-1
HIGH7.5In Bouncy Castle JCE Provider ECDSA does not fully validate ASN.1 encoding of signature on verification
from 0, < 1.56-1
HIGH7.5The Bouncy Castle JCE Provider carry a propagation bug
from 0, < 1.56-1
HIGH7.5bouncycastle - security update
from 0, < 1.49+dfsg-3+deb8u3
HIGH7.5bouncycastle - security update
from 0, < 1.56-1
HIGH7.5bouncycastle - security update
from 0, < 1.59-2
HIGH7.5bouncycastle - security update
from 0, < 1.56-1+deb9u2
HIGH7.4In Bouncy Castle JCE Provider the DHIES implementation allowed the use of ECB mode
from 0, < 1.56-1
HIGH7.4In Bouncy Castle JCE Provider the ECIES implementation allowed the use of ECB mode
from 0, < 1.56-1
MEDIUM5.9Bouncy Castle affected by timing side-channel for RSA key exchange ("The Marvin Attack")
from 0
MEDIUM5.9Bouncy Castle Java Cryptography API vulnerable to DNS poisoning
from 0
MEDIUM5.9bouncycastle - security update
from 0, < 1.56-1+deb9u1
MEDIUM5.9bouncycastle - security update
from 0, < 1.58-1
MEDIUM5.9Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15
from 0, < 1.56-1
MEDIUM5.9Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15
from 0, < 1.56-1
MEDIUM5.5Bouncy Castle Denial of Service (DoS)
from 0
MEDIUM5.3Bouncy Castle crafted signature and public key can be used to trigger an infinite loop
from 0
MEDIUM5.3Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation.
from 0
MEDIUM5.3bouncycastle - security update
from 0, < 1.60-1+deb10u1
MEDIUM5.3bouncycastle - security update
from 0
MEDIUM5.3bouncycastle - security update
from 0, < 1.61-1
MEDIUM5.3bouncycastle - security update
from 0, < 1.56-1+deb9u3
MEDIUM5.3Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15
from 0, < 1.56-1
MEDIUM5.1Timing based private key exposure in Bouncy Castle
from 0, < 1.68-1
MEDIUM4.4Improper Validation of Integrity Check Value in Bouncy Castle
from 0, < 1.48+dfsg-2
LOW3.7In Bouncy Castle JCE Provider the other party DH public key is not fully validated
from 0, < 1.56-1
LOW3.3bouncycastle - security update
from 0, < 1.49+dfsg-3+deb8u2
LOW3.3bouncycastle - security update
from 0, < 1.54-1
LOW3.3bouncycastle - security update
from 0, < 1.44+dfsg-3.1+deb7u2
—Bouncy Castle Uncontrolled Resource Consumption vulnerability
from 0
—Bouncy Castle has an LDAP injection
from 0
—Bouncy Castle Has Covert Timing Channel Vulnerability
from 0
—Bouncy Castle Crypto Package For Java: Use of a Broken or Risky Cryptographic Algorithm vulnerability in bcpkix modules
from 0
—Bouncy Castle Vulnerable to Uncontrolled Resource Consumption
from 0
—Bouncy Castle for Java bcpkix, bcprov, bcpkix-fips on All (API modules) allows Excessive Allocation
from 0
—Bouncy Castle for Java on All (API modules) allows Excessive Allocation
from 0
—Improper Input Validation in Bouncy Castle
from 0, < 1.48+dfsg-2
—Legion of the Bouncy Castle Java Cryptography API Bleichenbacher Oracle Vulnerability
from 0, < 1.38-1
—bouncycastle - security update
from 0, < 1.51-1
—bouncycastle - security update
from 0, < 1.44+dfsg-2+deb6u1
—bouncycastle - security update
from 0, < 1.44+dfsg-3.1+deb7u1
—polarssl - several
from 0, < 1.48+dfsg-2
—curl - several
from 0, < 1.49+dfsg-1