bouncycastle-fips-1.0
Chainguard
Status
Impact
bcfips version '1.0.2.5+' has a fix for this vulnerability, however this version is still pending certification. The existing certificate (4616), only covers up to v1.0.2.4. We can not upgrade the dependency at this time.
Status