GHSA-4vhj-98r6-424h

Source

https://github.com/advisories/GHSA-4vhj-98r6-424h

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/10/GHSA-4vhj-98r6-424h/GHSA-4vhj-98r6-424h.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-4vhj-98r6-424h

Aliases

CVE-2016-1000338

Published

2018-10-17T16:23:26Z

Modified

2024-08-29T21:36:57.201091Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator

Summary

In Bouncy Castle JCE Provider it is possible to inject extra elements in the sequence making up the signature and still have it validate

Details

In Bouncy Castle JCE Provider version 1.55 and earlier the DSA does not fully validate ASN.1 encoding of signature on verification. It is possible to inject extra elements in the sequence making up the signature and still have it validate, which in some cases may allow the introduction of 'invisible' data into a signed structure.

References

Affected packages

Maven / org.bouncycastle:bcprov-jdk14

Package

Name: org.bouncycastle:bcprov-jdk14; View open source insights on deps.dev
Purl: pkg:maven/org.bouncycastle/bcprov-jdk14

Affected ranges

Type: ECOSYSTEM
Events: Introduced

1.38

Fixed

1.56

Affected versions

1.*

1.38

1.43

1.44

1.45

1.46

1.47

1.48

1.49

1.50

1.51

1.53

1.54

1.55

Maven / org.bouncycastle:bcprov-jdk15