Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
native encrypt/decrypt operations in JCE may corrupt data if same byte array used for input and output.
Vulnerability Description
Out-of-bounds Write vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java bc-fips on All (API modules). This vulnerability is associated with program files org/bouncycastle/jcajce/provider/BaseCipher. This issue affects Bouncy Castle for Java: from BC-FJA 2.1.0 through 2.1.0.
CVSS Information
N/A
Vulnerability Type
跨界内存写
Vulnerability Title
Bouncy Castle 安全漏洞
Vulnerability Description
Bouncy Castle是Bouncy Castle组织的密码学中使用的API集合。它包括适用于Java和C#编程语言的API 。 Bouncy Castle for Java BC-FJA 2.1.0版本存在安全漏洞,该漏洞源于越界写入,可能导致执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A