The jose4j component before 0.9.4 for Java allows attackers to cause a
denial of service (CPU consumption) via a large p2c (aka PBES2 Count)
value.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 22.04 | noarch | libjose4j-java | <ย any | UNKNOWN |
ubuntu | 23.10 | noarch | libjose4j-java | <ย any | UNKNOWN |
ubuntu | 24.04 | noarch | libjose4j-java | <ย any | UNKNOWN |