Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.jitsi/dnssecjava@2.0.0
purl pkg:maven/org.jitsi/dnssecjava@2.0.0
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-t19w-8s3x-z7gt
Aliases:
GHSA-crjg-w57m-rqqf
DNSJava vulnerable to KeyTrap - Denial-of-Service Algorithmic Complexity Attacks ### Impact Users using the `ValidatingResolver` for DNSSEC validation can run into CPU exhaustion with specially crafted DNSSEC-signed zones. ### Patches Users should upgrade to dnsjava v3.6.0 ### Workarounds Although not recommended, only using a non-validating resolver, will remove the vulnerability. ### References https://www.athene-center.de/en/keytrap There are no reported fixed by versions.
VCID-vrhz-pre9-7kdk
Aliases:
GHSA-mmwx-rj87-vfgr
DNSJava affected by KeyTrap - NSEC3 closest encloser proof can exhaust CPU resources ### Impact Users using the `ValidatingResolver` for DNSSEC validation can run into CPU exhaustion with specially crafted DNSSEC-signed zones. ### Patches Users should upgrade to dnsjava v3.6.0 ### Workarounds Although not recommended, only using a non-validating resolver, will remove the vulnerability. ### References https://www.athene-center.de/en/keytrap There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T23:04:47.613469+00:00 GitLab Importer Affected by VCID-t19w-8s3x-z7gt https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jitsi/dnssecjava/GHSA-crjg-w57m-rqqf.yml 38.4.0
2026-04-16T23:04:43.537941+00:00 GitLab Importer Affected by VCID-vrhz-pre9-7kdk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jitsi/dnssecjava/GHSA-mmwx-rj87-vfgr.yml 38.4.0
2026-04-12T00:22:42.579661+00:00 GitLab Importer Affected by VCID-t19w-8s3x-z7gt https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jitsi/dnssecjava/GHSA-crjg-w57m-rqqf.yml 38.3.0
2026-04-12T00:22:38.284997+00:00 GitLab Importer Affected by VCID-vrhz-pre9-7kdk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jitsi/dnssecjava/GHSA-mmwx-rj87-vfgr.yml 38.3.0
2026-04-03T00:30:18.986939+00:00 GitLab Importer Affected by VCID-t19w-8s3x-z7gt https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jitsi/dnssecjava/GHSA-crjg-w57m-rqqf.yml 38.1.0
2026-04-03T00:30:14.738175+00:00 GitLab Importer Affected by VCID-vrhz-pre9-7kdk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jitsi/dnssecjava/GHSA-mmwx-rj87-vfgr.yml 38.1.0
2026-04-02T12:39:47.430982+00:00 GitLab Importer Affected by VCID-t19w-8s3x-z7gt https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jitsi/dnssecjava/GHSA-crjg-w57m-rqqf.yml 38.0.0
2026-04-02T12:39:46.913593+00:00 GitLab Importer Affected by VCID-vrhz-pre9-7kdk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jitsi/dnssecjava/GHSA-mmwx-rj87-vfgr.yml 38.0.0
2026-04-01T16:06:04.842430+00:00 GHSA Importer Affected by VCID-t19w-8s3x-z7gt https://github.com/advisories/GHSA-crjg-w57m-rqqf 38.0.0
2026-04-01T16:06:04.731092+00:00 GHSA Importer Affected by VCID-vrhz-pre9-7kdk https://github.com/advisories/GHSA-mmwx-rj87-vfgr 38.0.0