jmeter-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject [Bug 62113] Update Bouncycastle Version to 1.59
Date Sat, 17 Feb 2018 23:51:06 GMT
https://bz.apache.org/bugzilla/show_bug.cgi?id=62113

--- Comment #1 from Olaf Flebbe <oflebbe@apache.org> ---
The version 1.49 of bouncycastle is known to be vulnerable and has at least two
CVE's logged.

While I do not think jmeter has an open attack vendor (since it seems only be
used for SMIME), I would recommend to update anyway.

-- 
You are receiving this mail because:
You are the assignee for the bug.
Mime
View raw message