CVE-2016-1000339
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2016-1000339
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-1000339.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2016-1000339
- Aliases
- Downstream
- Related
- Published
- 2018-06-04T13:29:00Z
- Modified
- 2025-08-09T20:01:26Z
- Severity
-
- 5.3 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
In the Bouncy Castle JCE Provider version 1.55 and earlier the primary engine class used for AES was AESFastEngine. Due to the highly table driven approach used in the algorithm it turns out that if the data channel on the CPU can be monitored the lookup table accesses are sufficient to leak information on the AES key being used. There was also a leak in AESEngine although it was substantially less. AESEngine has been modified to remove any signs of leakage (testing carried out on Intel X86-64) and is now the primary AES class for the BC JCE provider from 1.56. Use of AESFastEngine is now only recommended where otherwise deemed appropriate.
- References
-
- https://access.redhat.com/errata/RHSA-2018:2669
- https://access.redhat.com/errata/RHSA-2018:2927
- https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b#diff-54656f860db94b867ba7542430cd2ef0
- https://github.com/bcgit/bc-java/commit/8a73f08931450c17c749af067b6a8185abdfd2c0#diff-494fb066bed02aeb76b6c005632943f2
- https://lists.debian.org/debian-lts-announce/2018/07/msg00009.html
- https://security.netapp.com/advisory/ntap-20181127-0004/
- https://usn.ubuntu.com/3727-1/
- https://www.oracle.com/security-alerts/cpuoct2020.html
Affected packages
Git / github.com/bcgit/bc-java
Affected ranges
- Type
- GIT
- Repo
- https://github.com/bcgit/bc-java
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedFixed
Database specific
{
"vanir_signatures": [
{
"id": "CVE-2016-1000339-0896efce",
"signature_type": "Line",
"target": {
"file": "prov/src/test/java/org/bouncycastle/jce/provider/test/DHTest.java"
},
"digest": {
"line_hashes": [
"16082635756810650437516457348171309492",
"291114909336691810551310670255158692551",
"334964256154265266899641455610918235764",
"313326537427841849376650187988091124861",
"171079130970708140777403953314941723301",
"327952980384223459607309263423729300461",
"52991092440460474442796493360784348214",
"253649734419718521209904829585897000658",
"295071272299860723771335647342083115437",
"27140620422348527073524030065149283898",
"202374703190591140913626216393533498612",
"261656395205769155709725366779016458780",
"300320043991702019277041409453108676496",
"103174832286761978017158635150491518979",
"92513775374738723741945694032308761658",
"318666191700552447341778109018064691428",
"128181828154476411018047763859762077146",
"41625127430517716919656388893523699092",
"200992364260056660583543358096126539410",
"203375300772806218054778499620455147351",
"280511931174620332835559380617148935819",
"240641799825298606748501113920385573292",
"323533364018298085727955804037758251699",
"286589782848911958913855424919499417653",
"252479603733813698616048108393302660449",
"68340687599137684088403505281101291746",
"118094101223202562218091014072971079442",
"27475343920019751676806673522000006079",
"28314313942066155427409457408000948727",
"283817253218021332923608182344784086615",
"98628379952095861944483352596110944198",
"227314143746583148881627627558593194872",
"271159361956670005788917577842127825129",
"23703634927683999507234400562448754852",
"337577415726232504900646826881639483769",
"97021737350644924059864493797947797557",
"269822559158374103677462236211452322064",
"40583447152671093979728063756823265237",
"128787754483271451333315459519747732048",
"22890060563992477011956969070413106929",
"281308883843606320120948569838154579856",
"261092110315663312597486726777028030646",
"137747064472644732933551815053796934665",
"219255492524619515177138741109640024945",
"200563556211920626581815050564089914870",
"312776850396693232751030089497752473644",
"230169635924950247483155094603591568066",
"278585456898643634205922124708782414854",
"255764243729192604178864336521125170513",
"261143570305311558339294682093506590456",
"2958002864679573381221483550244799602",
"13991023462143794868755228205372964648",
"140125243017222209939668690863431017135",
"84916591376090896626870214834259712136",
"199938936918369573808170195989011050126",
"229879950252278559072332917227956536182",
"307736663737936655259715015297396122016",
"146704677430925778996102140870038914036",
"235595728131264489281374324364253291667",
"195011759219293362541221457641294627062",
"273323894643106498376912463054884505776",
"123509488060827499315701702885887070225",
"219093851859836998340109816341083019397",
"278708962776682387854710869430526252624",
"94859577799170717249635662751633373685",
"254339049260612382456695424608757837279",
"18855867468324801402561999382540279017",
"278989465574202784916172091106141296859",
"280622951275555665347733402974864738870",
"226709376489208489278407582041030471800",
"29302836041854686870387636973833728426",
"217253858447177068617539773380022861557",
"225431311788718494804647385573969711945",
"147957419918855068147282968176255655066",
"188573193247527540167648845267282100052",
"28243417932713540204792405237555455748",
"48737111857185552620402325065671279947",
"148751693624781590931757126848210484792",
"181530977660167346144104570182796072460",
"218027984079322461301710980038175529020",
"195658952936119975683796679166229392664",
"229874481465673643319018338210515585399",
"199938936918369573808170195989011050126",
"229879950252278559072332917227956536182",
"307736663737936655259715015297396122016",
"146704677430925778996102140870038914036",
"91720116237281624394139039088451342435",
"200802954489029749198982831919223639043",
"249545376222469489457973474265579691831",
"284338822795863208570783590220793992796",
"340231509384843653376334368406392549768",
"253302651684128292344109815554084172945",
"253672382031636882646992917537220404822",
"232654432151937234509384682383011684191",
"54705711854266519562225926354129405215",
"80850595032091205110128588773869500292",
"326313500982062618426125310218312836446",
"290858850389290132230926182927122225479",
"76629752811332476801328873568657552678",
"229879950252278559072332917227956536182",
"307736663737936655259715015297396122016",
"146704677430925778996102140870038914036",
"299032313778535464306048510708655361278",
"219237616089934321847144632431153155337",
"188437355416121551407599546075431294911",
"59184275530796303897338824739397698683",
"339255337673701236450490374386344902565",
"243678021335930540679873053358659502234",
"277018011235209800512006997586048583863",
"319203957559843876493931066446927954041",
"94859577799170717249635662751633373685",
"254339049260612382456695424608757837279",
"18855867468324801402561999382540279017",
"278989465574202784916172091106141296859",
"280622951275555665347733402974864738870",
"332737058404471946462901371344478844371",
"140217728688942244235894914769524031987",
"76293589993473262809899241076832837411",
"127873451917636850903542598255796446416",
"271031124303012144442537265572767054766",
"329757590926219651011232371141950004374",
"74025205734355929063086121513441404017",
"200946444349101775595845145938380312336",
"80378495135908551595244148746461762604",
"60485630233710235299122889078000012801",
"217253858447177068617539773380022861557",
"225431311788718494804647385573969711945",
"147957419918855068147282968176255655066",
"188573193247527540167648845267282100052",
"5193251032059015650302486494568848525",
"165835073267395165402290846410775619529",
"144878364107235998861362169999432820470",
"86181398301819086327490160652527584276",
"195770785064281656572059341164921171135",
"269124748347469026944389892662789489797",
"219513692994570161666377345171142828096",
"106648307958512635363971562806076761647",
"56749490415924005279550626414905494693",
"276455692574373766767408182666397778097",
"279034245530981877541469965385011315687",
"143077990165310505392433503432562526319",
"3979546917796039034424819732186349231",
"66056995237568706850054099874255842895",
"329385243834815719870375951499845826292",
"242505335162900320882620058050558230923",
"56486119665451966828238673325511400312",
"271800647635743821403858110803033663397",
"63195051540283140836045466447519722962",
"173716633215662205144422418874331221830",
"170262968404945605748544754347296235444",
"52477675707338906156456812727642785039",
"195906507939159644449342275008189744640",
"41050086748226841196935597231647790985",
"69762854991991474627190955985932959879",
"218290398326152355015420459562642906443",
"240394807573152563950571085518580788209",
"255619863890147960611756860073296545457",
"26437588125807881152893210599278484048",
"74867997657530269524364876850877736792",
"311001070556233580023348535410816599689",
"265905369882969464562009449665989604380",
"227326930441097919273628050588106879041",
"328314233587424189556375299477240735975",
"64647090063720884848618965736727830066",
"256961895935158312076533843039829320200",
"195569181227500170209958967334743381710",
"271432847006884664960935274134674632388",
"311631677847894818531044318978752581578",
"17241363799662244303700218994253542102",
"279839966247638710585418880363377444273",
"38727402051162568520230926806834740944",
"61981530534234041979300869413722396311",
"26247219379250310485437360052328297719",
"70357495169833158295525222411194355343",
"269711823010706829237129106268498178158",
"77404314532200647458539242482419990147",
"248581531254463683144385459697850287601",
"10297444369514976122891393542473728607",
"325232761542674527771748592566148158926",
"135341717249899851705801575119057951692",
"260553355190803853149210894504410182502",
"178885465430368762509421361020914238873",
"136323006278714446908011507840500067090",
"175708651153469377626539343913851568181",
"271513722367275129635863638162331662245",
"263238771073075344716311507135978286571",
"205936070850424861525792106400446871685",
"77318729669985367284609488296290318311",
"44093715654293342488329307449772557140",
"202900744553994171268009851589208416379",
"272470981455370095121568062874602033712",
"109391545642665904104121926837062339161",
"329942142184009405323326196099659975311",
"320718126734180162682258452888848013618",
"83993815312865795341358324684011294192",
"52831030095027909401577858022662930111",
"297313812311566574702944529051767144387",
"161374838074741889965706815960646264073",
"321481009807618678290061659785401357103",
"96531655406789883143897034572218733282"
],
"threshold": 0.9
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-0e1eedd4",
"signature_type": "Function",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/drbg/DRBG.java",
"function": "generateNonceIVPersonalizationString"
},
"digest": {
"function_hash": "153966742213842990770779305509372128019",
"length": 227.0
},
"source": "https://github.com/bcgit/bc-java/commit/8a73f08931450c17c749af067b6a8185abdfd2c0",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-11a49e77",
"signature_type": "Line",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/asymmetric/dh/BCDHPublicKey.java"
},
"digest": {
"line_hashes": [
"84564454008473129015684427878418654253",
"211184258915739700202731509992761751507",
"136118360218500347808677600108231416889",
"90698602928308062704072258017178373564",
"191019974807666201266835127817088093493",
"87205531452947215833430938491467988749",
"257350050593512917752890604800123973064",
"18857188964224239943694720493505450720",
"289959188273373857728534638196694849180",
"278544726317658362968027370420217786862",
"3616819411918675948726538957152253286",
"88021536010664290978889019621083202977",
"202771230735261050311164972197686913886",
"298255217950048862726295129640082004975",
"173341252781663664582590493169839039748",
"333656714371739018222992303808542103208",
"145137014568138624428786325535201927915",
"28840810763276927857236453087867389637",
"244225406448878752014611750874108106806",
"172003070628471936751363653981438728045",
"160946677088657098124771440387109742965",
"89756432555071907065030928527636373437",
"197675812161979609959669528548608273473",
"212668381250362621634301006211047117067",
"312553303161722159322133847686491517306",
"35340528482574231180562507896252938384",
"288832435289448417626139914566185354118",
"228058379156901094826685039571844746373",
"92921967273510785822372743792873827366",
"230828875718760753446474636263900961778",
"7240722130122814444109345567934628819",
"123404639554334266115082396782166854182",
"139192053406704091752717246606043436068",
"320890241432874063239712885296016743106",
"184954051180200331042448335897397455755",
"253357965557919631978271739304885027201",
"137508570229134203140559234431255285037",
"91992121035277941751665859874215842705"
],
"threshold": 0.9
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-14cafc52",
"signature_type": "Function",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/asymmetric/dh/BCDHPublicKey.java",
"function": "BCDHPublicKey"
},
"digest": {
"function_hash": "112524071740734632169354080187207304144",
"length": 101.0
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-19a32f1e",
"signature_type": "Line",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/symmetric/AES.java"
},
"digest": {
"line_hashes": [
"174852126327307946074911709756631706075",
"278157884971263940358171992663284662643",
"288036609406099064451179079026262148977",
"247026124961160325250425879468682329010",
"32249896321787194140408795094149865113",
"82547315720069888597479148940125196978",
"182565184568393059339525762067387516368",
"126395705264375711668563070745265324595",
"78645365429884897698649169793192727483",
"54334059092621328421230203978322404156",
"287229337247093875638227201817753170077",
"58060063896636852626929431072258203923",
"322862117330623421914259467110647905702",
"111916226676540628877749419034143003829",
"324584936067599906003216653741009562080",
"198735070172417842466603227921280301123",
"336883690843061158288342111787924055196",
"332878100799947180972065615191924077540",
"312729214352216430262493383283100747799",
"293354975549218747359573685359926538653",
"233003714352953032247774926338959309279",
"10456396807456126102912277541477568836",
"71191590368408327910136438782358768825",
"31243437799748800490853357706191754964",
"152034326724809056110532461458436439155",
"261219551357610272273403476434604451918",
"208869453958783877231483178194063069410",
"126217704343979456588492116383212452445",
"318398282676701787070393329072753837788",
"286197516077952053201091046987348144803",
"218197469208046250060996364064471495346",
"211433661835682374380043811653501009014",
"164918987926429254852744601099063355215",
"292956746273208833765210664139360915558",
"30300036041671600069622284908606187898",
"171905913840101981738758660925029358798",
"103853668790529754683574964181734127632",
"229680315622510877863384325179773378510",
"89710256935370447284163934840494683739",
"152978624187617771984918047833505603201",
"260674024458727023398345895376862053381",
"180334271003958311937888782667069974039",
"323640017888346639434614208400155367897",
"313950198818773561335008376805005748317",
"181684270183927234609834862307044370066",
"67956402200305678841884071667115621735",
"50746647344966161921332425923700540659",
"254139637051597119138870399973479531327",
"129505398910421834266241598421624541399",
"291073115247290698018128796065551852423",
"135758472560303865859972602643111345003",
"209855585973347426307800570289017538294",
"55997317126134194034474562411639298228",
"306122206979628969668790660904543600058",
"333062206706686863549810273487253674916",
"336929274865304806026406132910394262489",
"310077973736863911590789292576859885003",
"339654990911641704092383875825680506751",
"290259528596970187039696349547819100581",
"339353327727423127428659301517532114945",
"118751759389061169995426070430274045035",
"178814107020844833279817046339335948116",
"267639577311581245480518098978153528638",
"266128387902745660131030600262834613456",
"236574348580742255015955228397266631981",
"237627156526354296719260038409196755755",
"133683934387965515417171789834210042496",
"5375250231693958842574325296521202588",
"241268424425788123566628048220651436879",
"339967988741763385206802870436238184053",
"227779909949911209474686774594748045822",
"310266441850543244509454200517845778050",
"73994686688599736667470644167441994899",
"62148245095067038931824233192177578888",
"125115159883366780945838726224407928865",
"17823193759312674456075676033780119367",
"273545030853428200341160239408032560528",
"198134756399262011204647638251395912606",
"108596782250779336396901930421940877274",
"145828227743584609737683964081976008296"
],
"threshold": 0.9
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-1f80119b",
"signature_type": "Function",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/drbg/DRBG.java",
"function": "getVIMID"
},
"digest": {
"function_hash": "190101188546972414766722702451274115760",
"length": 223.0
},
"source": "https://github.com/bcgit/bc-java/commit/8a73f08931450c17c749af067b6a8185abdfd2c0",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-2d91f80e",
"signature_type": "Function",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/drbg/DRBG.java",
"function": "generateDefaultPersonalizationString"
},
"digest": {
"function_hash": "153966742213842990770779305509372128019",
"length": 227.0
},
"source": "https://github.com/bcgit/bc-java/commit/8a73f08931450c17c749af067b6a8185abdfd2c0",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-2e4e0c43",
"signature_type": "Line",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/asymmetric/util/DHUtil.java"
},
"digest": {
"line_hashes": [
"337235832921616524457493820640422267798",
"134056040825827307440193244805440804159",
"237149632554377183690221040348483181210",
"289926589620047958275468294701970527205",
"24659373826155466413479154737027702211",
"228039123943530117011221366177457533047",
"92497263329540596313015902469088960086",
"124264644613134734112019627312577271012"
],
"threshold": 0.9
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-37080c86",
"signature_type": "Function",
"target": {
"file": "core/src/main/java/org/bouncycastle/crypto/params/DHPublicKeyParameters.java",
"function": "validate"
},
"digest": {
"function_hash": "229192676912774614181805399273175903416",
"length": 528.0
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-4242aecf",
"signature_type": "Line",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/asymmetric/ec/IESCipher.java"
},
"digest": {
"line_hashes": [
"335148865890509577069442197268533908179",
"107846041808211585042445514168448764752",
"272275299088946877660897738193471506081",
"284171916812154876045019352114239048395",
"64742628492384691582472669859980344642",
"140997573402011554818225152817594653915",
"171757591971574861764727411322415909524",
"110237805303789702400707094719060309675"
],
"threshold": 0.9
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-59225c48",
"signature_type": "Function",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/drbg/DRBG.java",
"function": "findConstructor"
},
"digest": {
"function_hash": "23899529889442544413410945107779668851",
"length": 112.0
},
"source": "https://github.com/bcgit/bc-java/commit/8a73f08931450c17c749af067b6a8185abdfd2c0",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-5b3e4adf",
"signature_type": "Function",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/symmetric/AES.java",
"function": "doFinal"
},
"digest": {
"function_hash": "133004400032455384950471036140283369863",
"length": 229.0
},
"source": "https://github.com/bcgit/bc-java/commit/8a73f08931450c17c749af067b6a8185abdfd2c0",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-71008a90",
"signature_type": "Line",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/symmetric/AES.java"
},
"digest": {
"line_hashes": [
"215429516149850509417344600081346332726",
"276344755249573700083853566104440193002",
"276641567471361108816280818349036032286",
"179595786809725399418171279762721782735"
],
"threshold": 0.9
},
"source": "https://github.com/bcgit/bc-java/commit/8a73f08931450c17c749af067b6a8185abdfd2c0",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-755d5676",
"signature_type": "Function",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/asymmetric/dh/BCDHPublicKey.java",
"function": "BCDHPublicKey"
},
"digest": {
"function_hash": "93647610731933520657906232117163619707",
"length": 209.0
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-801e3b04",
"signature_type": "Line",
"target": {
"file": "core/src/main/java/org/bouncycastle/crypto/params/DHPublicKeyParameters.java"
},
"digest": {
"line_hashes": [
"189975657940104792594949611032752945473",
"168975174441468646304046727386966678509",
"114744832640150533853487829964968158731",
"215573303458693258486444229001982008637",
"271363434747134195200889774755619540729",
"24844684215913216368135969497016057782",
"320020929347260727525318578069672446465",
"18925747696019710283363437954482533124",
"95444024990885626022600273779228335490",
"155073910034492534048375577239017233722"
],
"threshold": 0.9
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-9cbcde1d",
"signature_type": "Line",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/asymmetric/dh/KeyFactorySpi.java"
},
"digest": {
"line_hashes": [
"170036010899714122913330788647365087769",
"102164770915059266904832342217171233247",
"235601842025114268824954143640641471510",
"224238340814040637372540137304325285468"
],
"threshold": 0.9
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-aa2ef4ea",
"signature_type": "Function",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/asymmetric/util/DHUtil.java",
"function": "generatePublicKeyParameter"
},
"digest": {
"function_hash": "336896061607379177377896270498589984741",
"length": 348.0
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-b5bec3d2",
"signature_type": "Function",
"target": {
"file": "core/src/main/java/org/bouncycastle/crypto/engines/AESEngine.java",
"function": "decryptBlock"
},
"digest": {
"function_hash": "94234402317366639852163152344276538046",
"length": 3515.0
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-bda8023b",
"signature_type": "Function",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/symmetric/AES.java",
"function": "ECB"
},
"digest": {
"function_hash": "311367464530377460071760520210244117609",
"length": 111.0
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-d581510f",
"signature_type": "Function",
"target": {
"file": "prov/src/test/java/org/bouncycastle/jce/provider/test/DHTest.java",
"function": "performTest"
},
"digest": {
"function_hash": "322017794793715115050736846468896728458",
"length": 1152.0
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-da7f31be",
"signature_type": "Line",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/drbg/DRBG.java"
},
"digest": {
"line_hashes": [
"94047773621955495739178083696449684733",
"245831687093155609837923899811762741158",
"322744590199961702259969099828052505698",
"253198063763209117506480137590550523391",
"222659438066072295652759856570305537932",
"334418232398354613232265586140945845370",
"126624205557983566927344858771704408331",
"306203876529412246521770082135027194932",
"282757075123311142093610716592858644737",
"285926631833143388355198101972317980280",
"86064124464294426766949790390258516025",
"163633851220503195298054685997057271569",
"189191868739547484401903756854920014926",
"287661768277127333144591227453856729061",
"178246792837770319646134989285762184377",
"10134813620454611865549131369032143682",
"115602954290741674810382254286761955931",
"306640414402104163651501401461720112844",
"141853108688794352776602321908738219794",
"102917577028626832811721697852634532264",
"305463510925872055737628598324780398028",
"16736081034268122936988781917982792469",
"100010815485718994088463351995866117674",
"306203876529412246521770082135027194932",
"282757075123311142093610716592858644737",
"285926631833143388355198101972317980280",
"86064124464294426766949790390258516025",
"163633851220503195298054685997057271569",
"189191868739547484401903756854920014926",
"287661768277127333144591227453856729061",
"178246792837770319646134989285762184377",
"10134813620454611865549131369032143682",
"115602954290741674810382254286761955931",
"306640414402104163651501401461720112844",
"15505832134408718045699887630092717073",
"266663279726459441817431972603072439090",
"255981127943967035931631748328050056799",
"246468456336319651224024845883680093320",
"243392652166781442913439494946706621387",
"150210299267708819196817245070090959891",
"113037756400452442559144348057300979433",
"225873377729617394110864694863686737218",
"27264490622611077776152166823427881422",
"258158440765861343403771099663855037938",
"183681805482232578270804830880329700410",
"199175877374170984045397162175399465096",
"258737024678296358706598593033504628483",
"267080535855984087924856156477558282541",
"236911937533670925872554760688671042530",
"237821029127231583533708253703382056328",
"278771088976770072970863881247546013165",
"238064104287153152145782710165001572752",
"215175493164564824192507341248187990041",
"119912222072142575233945738586023516573",
"164570477142628548464149510206795738262",
"220431112944063549758731816920837225119",
"160384622183097715947218726527703732705",
"250876266008818897613856525747213327607",
"102522090960139391300527835295735989562",
"117340719604439751891908014017747978578",
"89711776288912765588943857105612087275",
"25643090935523853136341388026324441756",
"316778304548043960876880670102786822452",
"14574518600168064249810116824787563644",
"300076927635476430421911323100393652083",
"48518767266891163467125802112693401621",
"8411971470502025557152707441957496836",
"213550832310895195678961683313195857428",
"157755383342522050090306436053927844186",
"13250541700877091408990986242670136778",
"302752787730047091590412333998283332700",
"36634847575124899009138187440179532967",
"62279795264162263445768800876290391241",
"147901487973572755044638568538729478070",
"186847578690196315171856590621780852028",
"82833437946346777796371040616083479292",
"236113989617421831420049881090245422211",
"8411971470502025557152707441957496836",
"213550832310895195678961683313195857428",
"157755383342522050090306436053927844186",
"234907091375994288289740763664009592592",
"299709994835983938949589077025454400413",
"304641526458849694100674655891008172685",
"3658482716199253359567731047357491330",
"200721455869324801994821939835513376139",
"24534386853833059145467358304902086714",
"78001088600208521373550514747441194744",
"82425160937243023861034717287374283587",
"185959801534835854538385752261257052605",
"277180049722864432586037323290774988429",
"193103224290012570727802631431031155875",
"296772649875961780966595079903499201369",
"91856024349522433645629625939290938713",
"157990605554940151767246637588904943905",
"240393343572806616082801264370502477459",
"179686111999298020257796146675457677924",
"197095992103046223819936421982475368940",
"65689645214207241061602813555429056530",
"115780311898708530264224608588905289938",
"315035942627743273456584439707830400667"
],
"threshold": 0.9
},
"source": "https://github.com/bcgit/bc-java/commit/8a73f08931450c17c749af067b6a8185abdfd2c0",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-db14b175",
"signature_type": "Line",
"target": {
"file": "core/src/main/java/org/bouncycastle/crypto/engines/AESEngine.java"
},
"digest": {
"line_hashes": [
"305719389405053049712180804299635145714",
"48645335126120671961821736069969377020",
"181617972750722912162598111190932523939",
"191870746755393850103231599451305131807",
"170234595763008460492935328149766446084",
"237861651796493568586053628829566757493",
"134944762712918241094613731158447547295",
"299754772933876870548101099269537720671",
"26319944826888581809072948744942847468",
"51247013069213740871248091041177124645",
"90059545242220577919445833894093671563",
"167866672915878219032463832066659291345",
"298272434177057543770463959022870021032",
"5753773960565447491613654351919658284",
"118010182173014868582471429966151692420",
"5895255912542822616978698830493089903",
"206650832585775091488804400362160856741",
"175675485152758030086309887836731208013",
"72038981803528386552526277504281810807",
"104668613984909054769183982841484414277",
"116655016339793085974392379359461624883",
"322450028018701341066110794955125880218",
"102835374955596130652181505374174588253",
"333755182988609181393369739181116900739"
],
"threshold": 0.9
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-dfd59e85",
"signature_type": "Function",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/asymmetric/dh/BCDHPublicKey.java",
"function": "BCDHPublicKey"
},
"digest": {
"function_hash": "35859407770574752835342206496038376927",
"length": 972.0
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2016-1000339-e9549302",
"signature_type": "Function",
"target": {
"file": "prov/src/main/java/org/bouncycastle/jcajce/provider/asymmetric/dh/BCDHPublicKey.java",
"function": "BCDHPublicKey"
},
"digest": {
"function_hash": "212669327911129624594783290657718348513",
"length": 141.0
},
"source": "https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b",
"signature_version": "v1",
"deprecated": false
}
]
}