The jose2go component before 1.6.0 for Go allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.
{ "binaries": [ { "binary_name": "golang-github-dvsekhvalnov-jose2go-dev", "binary_version": "1.5-1" } ] }
{ "binaries": [ { "binary_name": "golang-github-dvsekhvalnov-jose2go-dev", "binary_version": "1.2-1" } ] }
{ "binaries": [ { "binary_name": "golang-github-dvsekhvalnov-jose2go-dev", "binary_version": "1.3-1" } ] }