Search for packages
| purl | pkg:maven/org.bouncycastle/bcpkix-fips@1.0.3 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-wqgc-hd9r-zuek
Aliases: CVE-2025-8916 GHSA-4cx2-fc23-5wg6 |
Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java bcpkix, bcprov, bcpkix-fips on All (API modules) allows Excessive Allocation. This vulnerability is associated with program files https://github.Com/bcgit/bc-java/blob/main/pkix/src/main/java/org/bouncycastle/pkix/jcajce/PKIXCertP... https://github.Com/bcgit/bc-java/blob/main/pkix/src/main/java/org/bouncycastle/pkix/jcajce/PKIXCertPathReviewer.java , https://github.Com/bcgit/bc-java/blob/main/prov/src/main/java/org/bouncycastle/x509/PKIXCertPathRevi... https://github.Com/bcgit/bc-java/blob/main/prov/src/main/java/org/bouncycastle/x509/PKIXCertPathReviewer.java . This issue affects Bouncy Castle for Java: from BC 1.44 through 1.78, from BCPKIX FIPS 1.0.0 through 1.0.7, from BCPKIX FIPS 2.0.0 through 2.0.7. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T23:35:14.140097+00:00 | GitLab Importer | Affected by | VCID-wqgc-hd9r-zuek | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcpkix-fips/CVE-2025-8916.yml | 38.4.0 |
| 2026-04-12T00:55:29.485889+00:00 | GitLab Importer | Affected by | VCID-wqgc-hd9r-zuek | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcpkix-fips/CVE-2025-8916.yml | 38.3.0 |
| 2026-04-03T01:03:39.154446+00:00 | GitLab Importer | Affected by | VCID-wqgc-hd9r-zuek | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcpkix-fips/CVE-2025-8916.yml | 38.1.0 |