| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|
| CVE-2024-34447 | vulnerable (no DSA, postponed) | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | An issue was discovered in Bouncy Castle Java Cryptography APIs before ... |
| CVE-2024-30172 | vulnerable (no DSA, postponed) | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | An issue was discovered in Bouncy Castle Java Cryptography APIs before ... |
| CVE-2024-30171 | vulnerable (no DSA, postponed) | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | An issue was discovered in Bouncy Castle Java TLS API and JSSE Provide ... |
| CVE-2024-29857 | vulnerable (no DSA, postponed) | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castl ... |
| CVE-2023-33202 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Bouncy Castle for Java before 1.73 contains a potential Denial of Serv ... |
| CVE-2023-33201 | vulnerable (no DSA, postponed) | fixed | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Bouncy Castle For Java before 1.74 is affected by an LDAP injection vu ... |
| CVE-2020-26939 | fixed | fixed | vulnerable (no DSA) | fixed | fixed | fixed | fixed | In Legion of the Bouncy Castle BC before 1.61 and BC-FJA before 1.0.1. ... |
| CVE-2020-15522 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | Bouncy Castle BC Java before 1.66, BC C# .NET before 1.8.7, BC-FJA bef ... |
| CVE-2016-1000352 | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | fixed | In the Bouncy Castle JCE Provider version 1.55 and earlier the ECIES i ... |
| CVE-2016-1000344 | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | fixed | In the Bouncy Castle JCE Provider version 1.55 and earlier the DHIES i ... |
| Bug | Description |
|---|
| CVE-2020-28052 | An issue was discovered in Legion of the Bouncy Castle BC Java 1.65 an ... |
| CVE-2019-17359 | The ASN.1 parser in Bouncy Castle Crypto (aka BC Java) 1.63 can trigge ... |
| CVE-2018-1000613 | Legion of the Bouncy Castle Legion of the Bouncy Castle Java Cryptogra ... |
| CVE-2018-1000180 | Bouncy Castle BC 1.54 - 1.59, BC-FJA 1.0.0, BC-FJA 1.0.1 and earlier h ... |
| CVE-2018-5382 | The default BKS keystore use an HMAC that is only 16 bits long, which ... |
| CVE-2017-13098 | BouncyCastle TLS prior to version 1.0.3, when configured to use the JC ... |
| CVE-2016-1000346 | In the Bouncy Castle JCE Provider version 1.55 and earlier the other p ... |
| CVE-2016-1000345 | In the Bouncy Castle JCE Provider version 1.55 and earlier the DHIES/E ... |
| CVE-2016-1000343 | In the Bouncy Castle JCE Provider version 1.55 and earlier the DSA key ... |
| CVE-2016-1000342 | In the Bouncy Castle JCE Provider version 1.55 and earlier ECDSA does ... |
| CVE-2016-1000341 | In the Bouncy Castle JCE Provider version 1.55 and earlier DSA signatu ... |
| CVE-2016-1000340 | In the Bouncy Castle JCE Provider versions 1.51 to 1.55, a carry propa ... |
| CVE-2016-1000339 | In the Bouncy Castle JCE Provider version 1.55 and earlier the primary ... |
| CVE-2016-1000338 | In Bouncy Castle JCE Provider version 1.55 and earlier the DSA does no ... |
| CVE-2015-7940 | The Bouncy Castle Java library before 1.51 does not validate a point i ... |
| CVE-2015-6644 | Bouncy Castle in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 ... |
| CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ... |
| CVE-2013-1624 | The TLS implementation in the Bouncy Castle Java library before 1.48 a ... |
| CVE-2013-0169 | The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as use ... |
| CVE-2011-3389 | The SSL protocol, as used in certain configurations in Microsoft Windo ... |
| CVE-2007-6721 | The Legion of the Bouncy Castle Java Cryptography API before release 1 ... |