Mirrors/sshj
1
0
Fork 0
mirror of https://github.com/hierynomus/sshj.git synced 2025-12-06 15:20:54 +03:00
Code Issues Actions Packages Projects Releases Wiki Activity

Update bouncyCastle to 1.78 to mitigate CVE-2024-29857 (#938)

Browse Source 
Bouncy Caste version before 1.78 have 

CVE-2024-29857 - Importing an EC certificate with specially crafted F2m parameters can cause high CPU usage during parameter evaluation.

Is sshj impacted by this vulnerability?
This commit is contained in:
eshaffer321
2024-04-17 04:32:46 -06:00
committed by GitHub
parent 586a66420e
commit cf340c2a09
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
build.gradle
View File

@@ -41,7 +41,7 @@ compileJava {
configurations.implementation.transitive = false configurations.implementation.transitive = false
def bouncycastleVersion = "1.75" def bouncycastleVersion = "1.78"
def sshdVersion = "2.10.0" def sshdVersion = "2.10.0"
dependencies { dependencies {