CVE-2026-5588

A flaw was found in Legion of the Bouncy Castle Inc. BC-JAVA bcpkix. The PKIX draft CompositeVerifier implementation improperly accepts an empty signature sequence as a valid cryptographic signature. This issue allows a remote attacker to bypass signature verification mechanisms, potentially...

EUVD-2025-24555

Malicious code in bioql PyPI...

SUSE CVE-2025-8916

Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. BC Java bcpkix on All API modules, Legion of the Bouncy Castle Inc. BC Java bcprov on All API modules, Legion of the Bouncy Castle Inc. BCPKIX FIPS bcpkix-fips on All API modules allows Excessiv...

GHSA-4CX2-FC23-5WG6 Bouncy Castle for Java bcpkix, bcprov, bcpkix-fips on All (API modules) allows Excessive Allocation

Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java bcpkix, bcprov, bcpkix-fips on All API modules allows Excessive Allocation. This vulnerability is associated with program files...

com.ascentstream.pulsar:bcfips-include-test (>=2.10.6.9 <=3.0.8.0-SNAPSHOT-16a7bcc), com.ascentstream.pulsar:bouncy-castle-bcfips (>=2.10.6.9 <=3.0.14.1) +20 more potentially affected by CVE-2025-8916 via org.bouncycastle:bcpkix-fips (>=1.0.1 <=1.0.7)

org.bouncycastle:bcpkix-fips MAVEN version =1.0.1, =2.10.6.9, =2.10.6.9, =2.1.2, =8.0.0, =1.2.0, =1.17.0, =1.17.0, =1.0.0, =1.0.0, =3.0.0-FINAL, =3.0.0-FINAL, =1.0.0, =1.0.1 - io.skuber:skuber-examples2.12 =2.6.3 - io.skuber:skuber-examples2.13 =2.6.3 and more Source cves: CVE-2025-8916 Source...

com.ascentstream.pulsar:bouncy-castle-bcfips (>=3.0.16.0 <=4.0.11.0), com.itextpdf:bouncy-castle-fips-adapter (>=9.0.0 <=9.2.0) +11 more potentially affected by CVE-2025-8916 via org.bouncycastle:bcpkix-fips (>=2.0.10 <=2.0.7)

org.bouncycastle:bcpkix-fips MAVEN version =2.0.10, =3.0.16.0, =9.0.0, =4.0.7.1, =4.0.7.1, =3.0.15, =26.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0-beta1 Source cves: CVE-2025-8916 Source advisory: OSV:GHSA-4CX2-FC23-5WG6...

DEBIAN-CVE-2025-8916

Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. BC Java bcpkix on All API modules, Legion of the Bouncy Castle Inc. BC Java bcprov on All API modules, Legion of the Bouncy Castle Inc. BCPKIX FIPS bcpkix-fips on All API modules allows Excessiv...

com.ascentstream.pulsar:bcfips-include-test (>=3.0.7.0-SNAPSHOT-a030c50 <=3.0.8.0-SNAPSHOT-16a7bcc), com.ascentstream.pulsar:bouncy-castle-bcfips (>=3.0.7.0-SNAPSHOT-a030c50 <=4.0.11.0) +13 more potentially affected by CVE-2025-8916 via org.bouncycastle:bcpkix-fips (>=1.0.5 <=2.0.11)

org.bouncycastle:bcpkix-fips MAVEN version =1.0.5, =3.0.7.0-SNAPSHOT-a030c50, =3.0.7.0-SNAPSHOT-a030c50, =2.1.2, =8.0.0, =1.2.0, =1.17.0, =1.17.0, =3.1.0, =3.0.0.1, =3.0.0.1, =3.13.14, =3.0.0, =1.0.4, =1.0.0, =19.0.0, =25.0.6 Source cves: CVE-2025-8916 Source advisory:...