pkg:Maven/org.bouncycastle:bctls-jdk18on

All known vulnerabilities

• MEDIUM5.9CVE-2024-30171Bouncy Castle affected by timing side-channel for RSA key exchange ("The Marvin Attack")
  from 0, < 1.78
• MEDIUM5.3CVE-2024-29857Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation.
  from 0, < 1.78
• MEDIUM5.3CVE-2024-30172Bouncy Castle crafted signature and public key can be used to trigger an infinite loop
  >= 1.73, < 1.78
• —Bouncy Castle for Java on All (API modules) allows Excessive Allocation
  >= 1.0, < 1.78