Search for packages
Package details: pkg:maven/org.bouncycastle/bcprov-jdk15to18@1.74
purl pkg:maven/org.bouncycastle/bcprov-jdk15to18@1.74
Next non-vulnerable version 1.78
Latest non-vulnerable version 1.78
Risk 3.4
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-8kgr-r3r4-aaak
Aliases:
CVE-2024-30171
GHSA-v435-xc8x-wvr9
An issue was discovered in Bouncy Castle Java TLS API and JSSE Provider before 1.78. Timing-based leakage may occur in RSA based handshakes because of exception processing.
1.78
Affected by 0 other vulnerabilities.
VCID-99hh-6w2u-aaaa
Aliases:
CVE-2024-30172
GHSA-m44j-cfrm-g8qc
An issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature and public key.
1.78
Affected by 0 other vulnerabilities.
VCID-nzkq-7w4j-aaas
Aliases:
CVE-2024-34447
GHSA-4h8f-2wvx-gg5w
Bouncy Castle Java Cryptography API vulnerable to DNS poisoning An issue was discovered in Bouncy Castle Java Cryptography APIs before BC 1.78. When endpoint identification is enabled in the BCJSSE and an SSL socket is created without an explicit hostname (as happens with HttpsURLConnection), hostname verification could be performed against a DNS-resolved IP address in some situations, opening up a possibility of DNS poisoning.
1.78
Affected by 0 other vulnerabilities.
VCID-p1ac-tc9q-aaaa
Aliases:
CVE-2024-29857
GHSA-8xfc-gm6g-vgpv
An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java (BC Java) before 1.78, BC Java LTS before 2.73.6, BC-FJA before 1.0.2.5, and BC C# .Net before 2.3.1. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters.
1.78
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-ea8z-9myn-aaab Bouncy Castle For Java before 1.74 is affected by an LDAP injection vulnerability. The vulnerability only affects applications that use an LDAP CertStore from Bouncy Castle to validate X.509 certificates. During the certificate validation process, Bouncy Castle inserts the certificate's Subject Name into an LDAP search filter without any escaping, which leads to an LDAP injection vulnerability. CVE-2023-33201
GHSA-hr8g-6v94-x4m9

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T16:58:27.269146+00:00 GitLab Importer Affected by VCID-8kgr-r3r4-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30171.yml 36.1.3
2025-06-20T16:58:18.290577+00:00 GitLab Importer Affected by VCID-99hh-6w2u-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30172.yml 36.1.3
2025-06-20T16:58:11.939969+00:00 GitLab Importer Affected by VCID-p1ac-tc9q-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-29857.yml 36.1.3
2025-06-20T16:57:37.995600+00:00 GitLab Importer Affected by VCID-nzkq-7w4j-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-34447.yml 36.1.3
2025-06-20T16:36:20.593495+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2023-33201.yml 36.1.3
2025-06-20T16:36:18.358101+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab None 36.1.3
2025-06-03T23:35:06.300881+00:00 GitLab Importer Affected by VCID-8kgr-r3r4-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30171.yml 36.1.0
2025-06-03T23:34:57.698708+00:00 GitLab Importer Affected by VCID-99hh-6w2u-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30172.yml 36.1.0
2025-06-03T23:34:51.007041+00:00 GitLab Importer Affected by VCID-p1ac-tc9q-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-29857.yml 36.1.0
2025-06-03T23:34:19.419925+00:00 GitLab Importer Affected by VCID-nzkq-7w4j-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-34447.yml 36.1.0
2025-06-03T23:15:04.925519+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2023-33201.yml 36.1.0
2025-06-03T23:15:02.857013+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab None 36.1.0
2025-06-02T23:33:05.194768+00:00 GitLab Importer Affected by VCID-8kgr-r3r4-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30171.yml 36.1.2
2025-06-02T23:32:57.223004+00:00 GitLab Importer Affected by VCID-99hh-6w2u-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30172.yml 36.1.2
2025-06-02T23:32:51.074573+00:00 GitLab Importer Affected by VCID-p1ac-tc9q-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-29857.yml 36.1.2
2025-06-02T23:32:16.831882+00:00 GitLab Importer Affected by VCID-nzkq-7w4j-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-34447.yml 36.1.2
2025-06-02T23:12:08.957905+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2023-33201.yml 36.1.2
2025-06-02T23:12:06.682170+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab None 36.1.2
2025-04-03T22:06:04.155223+00:00 GitLab Importer Affected by VCID-8kgr-r3r4-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30171.yml 36.0.0
2025-04-03T22:05:51.195096+00:00 GitLab Importer Affected by VCID-99hh-6w2u-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30172.yml 36.0.0
2025-04-03T22:05:42.428962+00:00 GitLab Importer Affected by VCID-p1ac-tc9q-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-29857.yml 36.0.0
2025-04-03T22:04:29.617240+00:00 GitLab Importer Affected by VCID-nzkq-7w4j-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-34447.yml 36.0.0
2025-04-03T21:22:01.677913+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2023-33201.yml 36.0.0
2025-04-03T21:21:57.424568+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab None 36.0.0
2025-02-18T06:35:18.052883+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2023-33201.yml 35.1.0
2025-02-18T06:35:17.523811+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab None 35.1.0
2025-02-18T03:58:38.741734+00:00 GitLab Importer Affected by VCID-nzkq-7w4j-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-34447.yml 35.1.0
2025-02-18T03:54:47.399204+00:00 GitLab Importer Affected by VCID-99hh-6w2u-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30172.yml 35.1.0
2025-02-18T03:54:42.943015+00:00 GitLab Importer Affected by VCID-8kgr-r3r4-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30171.yml 35.1.0
2025-02-18T03:54:01.132774+00:00 GitLab Importer Affected by VCID-p1ac-tc9q-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-29857.yml 35.1.0
2025-01-17T02:47:35.262663+00:00 GHSA Importer Fixing VCID-ea8z-9myn-aaab None 35.1.0
2024-11-21T02:34:58.800919+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2023-33201.yml 35.0.0
2024-11-21T01:09:16.684296+00:00 GitLab Importer Affected by VCID-nzkq-7w4j-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-34447.yml 35.0.0
2024-11-21T01:06:53.030356+00:00 GitLab Importer Affected by VCID-99hh-6w2u-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30172.yml 35.0.0
2024-11-21T01:06:50.136392+00:00 GitLab Importer Affected by VCID-8kgr-r3r4-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30171.yml 35.0.0
2024-11-21T01:06:24.073310+00:00 GitLab Importer Affected by VCID-p1ac-tc9q-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-29857.yml 35.0.0
2024-11-19T02:25:03.680823+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2023-33201.yml 34.3.2
2024-11-19T00:58:02.754034+00:00 GitLab Importer Affected by VCID-nzkq-7w4j-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-34447.yml 34.3.2
2024-11-19T00:55:43.742218+00:00 GitLab Importer Affected by VCID-99hh-6w2u-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30172.yml 34.3.2
2024-11-19T00:55:41.480097+00:00 GitLab Importer Affected by VCID-8kgr-r3r4-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30171.yml 34.3.2
2024-11-19T00:55:14.247691+00:00 GitLab Importer Affected by VCID-p1ac-tc9q-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-29857.yml 34.3.2
2024-10-15T19:08:33.402536+00:00 GithubOSV Importer Fixing VCID-ea8z-9myn-aaab https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/07/GHSA-hr8g-6v94-x4m9/GHSA-hr8g-6v94-x4m9.json 34.0.2
2024-10-08T02:52:46.726912+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2023-33201.yml 34.0.2
2024-10-08T01:35:51.935123+00:00 GitLab Importer Affected by VCID-nzkq-7w4j-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-34447.yml 34.0.2
2024-10-08T01:26:45.111748+00:00 GitLab Importer Affected by VCID-99hh-6w2u-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30172.yml 34.0.2
2024-10-08T01:26:42.441745+00:00 GitLab Importer Affected by VCID-8kgr-r3r4-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30171.yml 34.0.2
2024-10-08T01:26:04.571275+00:00 GitLab Importer Affected by VCID-p1ac-tc9q-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-29857.yml 34.0.2
2024-10-07T22:14:22.663614+00:00 GHSA Importer Affected by VCID-nzkq-7w4j-aaas https://github.com/advisories/GHSA-4h8f-2wvx-gg5w 34.0.2
2024-10-07T22:10:59.736725+00:00 GHSA Importer Affected by VCID-99hh-6w2u-aaaa https://github.com/advisories/GHSA-m44j-cfrm-g8qc 34.0.2
2024-10-07T22:10:58.015091+00:00 GHSA Importer Affected by VCID-8kgr-r3r4-aaak https://github.com/advisories/GHSA-v435-xc8x-wvr9 34.0.2
2024-10-07T22:10:07.129341+00:00 GHSA Importer Affected by VCID-p1ac-tc9q-aaaa https://github.com/advisories/GHSA-8xfc-gm6g-vgpv 34.0.2
2024-10-07T21:27:27.620592+00:00 GHSA Importer Fixing VCID-ea8z-9myn-aaab https://github.com/advisories/GHSA-hr8g-6v94-x4m9 34.0.2
2024-09-23T01:33:18.584328+00:00 GitLab Importer Affected by VCID-nzkq-7w4j-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-34447.yml 34.0.1
2024-09-23T01:31:19.196735+00:00 GitLab Importer Affected by VCID-99hh-6w2u-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30172.yml 34.0.1
2024-09-23T01:31:16.980991+00:00 GitLab Importer Affected by VCID-8kgr-r3r4-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-30171.yml 34.0.1
2024-09-23T01:30:50.516846+00:00 GitLab Importer Affected by VCID-p1ac-tc9q-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2024-29857.yml 34.0.1
2024-09-22T22:41:03.858342+00:00 GHSA Importer Affected by VCID-nzkq-7w4j-aaas https://github.com/advisories/GHSA-4h8f-2wvx-gg5w 34.0.1
2024-09-22T22:37:47.383626+00:00 GHSA Importer Affected by VCID-99hh-6w2u-aaaa https://github.com/advisories/GHSA-m44j-cfrm-g8qc 34.0.1
2024-09-22T22:37:45.469299+00:00 GHSA Importer Affected by VCID-8kgr-r3r4-aaak https://github.com/advisories/GHSA-v435-xc8x-wvr9 34.0.1
2024-09-22T22:37:12.858046+00:00 GHSA Importer Affected by VCID-p1ac-tc9q-aaaa https://github.com/advisories/GHSA-8xfc-gm6g-vgpv 34.0.1
2024-09-18T09:24:12.801155+00:00 GithubOSV Importer Fixing VCID-ea8z-9myn-aaab https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/07/GHSA-hr8g-6v94-x4m9/GHSA-hr8g-6v94-x4m9.json 34.0.1
2024-09-17T22:37:14.603136+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2023-33201.yml 34.0.1
2024-09-17T22:03:03.904479+00:00 GHSA Importer Fixing VCID-ea8z-9myn-aaab https://github.com/advisories/GHSA-hr8g-6v94-x4m9 34.0.1
2024-04-24T05:26:42.126648+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2023-33201.yml 34.0.0rc4
2024-04-24T05:26:41.454280+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab None 34.0.0rc4
2024-04-24T00:30:49.125072+00:00 GHSA Importer Fixing VCID-ea8z-9myn-aaab https://github.com/advisories/GHSA-hr8g-6v94-x4m9 34.0.0rc4
2024-04-24T00:30:44.046251+00:00 GHSA Importer Fixing VCID-ea8z-9myn-aaab None 34.0.0rc4
2024-04-23T23:16:07.854264+00:00 GithubOSV Importer Fixing VCID-ea8z-9myn-aaab https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/07/GHSA-hr8g-6v94-x4m9/GHSA-hr8g-6v94-x4m9.json 34.0.0rc4
2024-01-10T07:58:26.726006+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2023-33201.yml 34.0.0rc2
2024-01-10T07:58:26.058138+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab None 34.0.0rc2
2024-01-10T02:32:39.836866+00:00 GHSA Importer Fixing VCID-ea8z-9myn-aaab https://github.com/advisories/GHSA-hr8g-6v94-x4m9 34.0.0rc2
2024-01-10T02:32:34.561937+00:00 GHSA Importer Fixing VCID-ea8z-9myn-aaab None 34.0.0rc2
2024-01-04T00:43:31.497843+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab None 34.0.0rc1
2024-01-03T18:00:13.047667+00:00 GitLab Importer Fixing VCID-ea8z-9myn-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.bouncycastle/bcprov-jdk15to18/CVE-2023-33201.yml 34.0.0rc1
2024-01-03T17:37:52.439577+00:00 GHSA Importer Fixing VCID-ea8z-9myn-aaab https://github.com/advisories/GHSA-hr8g-6v94-x4m9 34.0.0rc1