First published: Mon Mar 30 2009(Updated: )
The Legion of the Bouncy Castle Java Cryptography API before release 1.38, as used in Crypto Provider Package before 1.36, has unknown impact and remote attack vectors related to "a Bleichenbacher vulnerability in simple RSA CMS signatures without signed attributes."
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
maven/bouncycastle:bcprov-jdk16 | <1.38 | 1.38 |
maven/bouncycastle:bcprov-jdk14 | <1.38 | 1.38 |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | <=1.37 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.01 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.02 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.03 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.04 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.05 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.06 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.07 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.08 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.09 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.10 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.11 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.12 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.13 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.14 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.15 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.16 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.17 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.18 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.19 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.20 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.21 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.22 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.23 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.24 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.25 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.26 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.27 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.28 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.29 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.30 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.31 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.32 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.33 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.34 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.35 | |
Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | =1.36 | |
Bouncycastle Bouncy-castle-crypto-package | <=1.35 | |
Bouncycastle Bouncy-castle-crypto-package | =1.0 | |
Bouncycastle Bouncy-castle-crypto-package | =1.01 | |
Bouncycastle Bouncy-castle-crypto-package | =1.02 | |
Bouncycastle Bouncy-castle-crypto-package | =1.03 | |
Bouncycastle Bouncy-castle-crypto-package | =1.3.1 | |
Bouncycastle Bouncy-castle-crypto-package | =1.04 | |
Bouncycastle Bouncy-castle-crypto-package | =1.05 | |
Bouncycastle Bouncy-castle-crypto-package | =1.06 | |
Bouncycastle Bouncy-castle-crypto-package | =1.07 | |
Bouncycastle Bouncy-castle-crypto-package | =1.08 | |
Bouncycastle Bouncy-castle-crypto-package | =1.09 | |
Bouncycastle Bouncy-castle-crypto-package | =1.11 | |
Bouncycastle Bouncy-castle-crypto-package | =1.12 | |
Bouncycastle Bouncy-castle-crypto-package | =1.13 | |
Bouncycastle Bouncy-castle-crypto-package | =1.14 | |
Bouncycastle Bouncy-castle-crypto-package | =1.15 | |
Bouncycastle Bouncy-castle-crypto-package | =1.16 | |
Bouncycastle Bouncy-castle-crypto-package | =1.17 | |
Bouncycastle Bouncy-castle-crypto-package | =1.18 | |
Bouncycastle Bouncy-castle-crypto-package | =1.19 | |
Bouncycastle Bouncy-castle-crypto-package | =1.20 | |
Bouncycastle Bouncy-castle-crypto-package | =1.21 | |
Bouncycastle Bouncy-castle-crypto-package | =1.22 | |
Bouncycastle Bouncy-castle-crypto-package | =1.23 | |
Bouncycastle Bouncy-castle-crypto-package | =1.24 | |
Bouncycastle Bouncy-castle-crypto-package | =1.25 | |
Bouncycastle Bouncy-castle-crypto-package | =1.26 | |
Bouncycastle Bouncy-castle-crypto-package | =1.27 | |
Bouncycastle Bouncy-castle-crypto-package | =1.28 | |
Bouncycastle Bouncy-castle-crypto-package | =1.29 | |
Bouncycastle Bouncy-castle-crypto-package | =1.30 | |
Bouncycastle Bouncy-castle-crypto-package | =1.32 | |
Bouncycastle Bouncy-castle-crypto-package | =1.33 | |
Bouncycastle Bouncy-castle-crypto-package | =1.34 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.