Description
The ASN.1 parser in Bouncy Castle Crypto (aka BC Java) 1.63 can trigger a large attempted memory allocation, and resultant OutOfMemoryError error, via crafted ASN.1 data. This is fixed in 1.64.
Remediation
References
Related Vulnerabilities
PostgreSQL Cryptographic Issues Vulnerability (CVE-2009-4034)
ownCloud Other Vulnerability (CVE-2022-25339)
WordPress Plugin Raygun4WP Cross-Site Scripting (1.8.2)
Oracle JRE CVE-2014-0446 Vulnerability (CVE-2014-0446)
RubyGems Improper Verification of Cryptographic Signature Vulnerability (CVE-2018-1000076)