Search for packages
| purl | pkg:maven/org.bouncycastle/bcpkix-jdk14@1.73 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-sz15-payv-uyab | Uncontrolled Resource Consumption Bouncy Castle for Java before 1.73 contains a potential Denial of Service (DoS) issue within the Bouncy Castle org.bouncycastle.openssl.PEMParser class. This class parses OpenSSL PEM encoded streams containing X.509 certificates, PKCS8 encoded keys, and PKCS7 objects. Parsing a file that has crafted ASN.1 data through the PEMParser causes an OutOfMemoryError, which can enable a denial of service attack. |
CVE-2023-33202
GHSA-wjxj-5m7g-mg7q |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T22:43:54.585029+00:00 | GitLab Importer | Fixing | VCID-sz15-payv-uyab | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcpkix-jdk14/CVE-2023-33202.yml | 38.4.0 |
| 2026-04-12T00:03:30.118133+00:00 | GitLab Importer | Fixing | VCID-sz15-payv-uyab | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcpkix-jdk14/CVE-2023-33202.yml | 38.3.0 |
| 2026-04-03T00:08:11.084627+00:00 | GitLab Importer | Fixing | VCID-sz15-payv-uyab | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcpkix-jdk14/CVE-2023-33202.yml | 38.1.0 |
| 2026-04-01T12:52:09.223141+00:00 | GitLab Importer | Fixing | VCID-sz15-payv-uyab | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcpkix-jdk14/CVE-2023-33202.yml | 38.0.0 |