Information on source package bouncycastle

Available versions

ReleaseVersion
jessie (security)1.49+dfsg-3+deb8u2
stretch1.56-1+deb9u1
stretch (security)1.56-1+deb9u2
buster1.59-2
sid1.59-2

Open issues

BugjessiestretchbustersidDescription
CVE-2016-1000352vulnerablefixedfixedfixedIn the Bouncy Castle JCE Provider version 1.55 and earlier the ECIES ...
CVE-2016-1000346vulnerablefixedfixedfixedIn the Bouncy Castle JCE Provider version 1.55 and earlier the other ...
CVE-2016-1000345vulnerablefixedfixedfixedIn the Bouncy Castle JCE Provider version 1.55 and earlier the ...
CVE-2016-1000344vulnerablefixedfixedfixedIn the Bouncy Castle JCE Provider version 1.55 and earlier the DHIES ...
CVE-2016-1000343vulnerablefixedfixedfixedIn the Bouncy Castle JCE Provider version 1.55 and earlier the DSA key ...
CVE-2016-1000342vulnerablefixedfixedfixedIn the Bouncy Castle JCE Provider version 1.55 and earlier ECDSA does ...
CVE-2016-1000341vulnerablefixedfixedfixedIn the Bouncy Castle JCE Provider version 1.55 and earlier DSA ...
CVE-2016-1000339vulnerablefixedfixedfixedIn the Bouncy Castle JCE Provider version 1.55 and earlier the primary ...
CVE-2016-1000338vulnerable (no DSA)fixedfixedfixedIn Bouncy Castle JCE Provider version 1.55 and earlier the DSA does ...

Resolved issues

BugDescription
CVE-2018-5382Bouncy Castle BKS version 1 keystore (BKS-V1) files use an HMAC that ...
CVE-2018-1000180Bouncy Castle BC 1.54 - 1.59, BC-FJA 1.0.0, BC-FJA 1.0.1 and earlier ...
CVE-2017-13098BouncyCastle TLS prior to version 1.0.3, when configured to use the ...
CVE-2016-1000340In the Bouncy Castle JCE Provider versions 1.51 to 1.55, a carry ...
CVE-2015-7940The Bouncy Castle Java library before 1.51 does not validate a point ...
CVE-2015-6644Bouncy Castle in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 ...
CVE-2014-3566The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other ...
CVE-2013-1624The TLS implementation in the Bouncy Castle Java library before 1.48 ...
CVE-2013-0169The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as ...
CVE-2011-3389The SSL protocol, as used in certain configurations in Microsoft ...
CVE-2007-6721The Legion of the Bouncy Castle Java Cryptography API before release ...

Security announcements

DSA / DLADescription
DSA-4233-1bouncycastle - security update
DSA-4072-1bouncycastle - security update
DSA-3829-1bouncycastle - security update
DLA-893-1bouncycastle - security update
DSA-3417-1bouncycastle - security update
DSA-3417-1bouncycastle - security update
DLA-361-1bouncycastle - security update

Search for package or bug name: Reporting problems