Description
The ASN.1 parser in Bouncy Castle Crypto (aka BC Java) 1.63 can trigger a large attempted memory allocation, and resultant OutOfMemoryError error, via crafted ASN.1 data. This is fixed in 1.64.
Remediation
References
Related Vulnerabilities
GeoServer Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-36401)
WordPress Other Vulnerability (CVE-2007-0107)
WordPress Plugin Meta Slider and Carousel with Lightbox Cross-Site Request Forgery (1.6.2)
Jenkins Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2024-43044)