CVE-2024-30171

Published: 14 May 2024

An issue was discovered in Bouncy Castle Java TLS API and JSSE Provider before 1.78. Timing-based leakage may occur in RSA based handshakes because of exception processing.

Status

References

• https://www.cve.org/CVERecord?id=CVE-2024-30171
• https://github.com/bcgit/bc-java/issues/1528
• NVD
• Launchpad
• Debian