In Bouncy Castle JCE Provider it is possible to inject extra elements in the sequence making up the signature and still have it validate
High severity
GitHub Reviewed
Published
Oct 17, 2018
to the GitHub Advisory Database
•
Updated Sep 12, 2025
Give feedback on Dependabot alerts