{ "threat_severity" : "Important", "public_date" : "2026-04-15T08:56:34Z", "bugzilla" : { "description" : "bouncycastle: BC-JAVA: GOSTCTR implementation unable to process more than 255 blocks correctly", "id" : "2458640", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2458640" }, "cvss3" : { "cvss3_base_score" : "7.5", "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "status" : "verified" }, "cwe" : "CWE-327", "details" : [ ": Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcprov on all (core modules).\nThis vulnerability is associated with program files G3413CTRBlockCipher.\nThis issue affects BC-JAVA: from 1.59 before 1.80.2, from 1.81 before 1.81.1, from 1.82 before 1.84.", "A flaw was found in Legion of the Bouncy Castle Inc. BC-JAVA bcprov. The `GOSTCTR` implementation is unable to securely process more than 255 blocks of data due to keystream reuse. This issue allows an attacker to break the fundamental confidentiality of any data protected by the `G3413CTRBlockCipher`, potentially leading to the recovery and access of encrypted data." ], "statement" : "To exploit this flaw, an attacker needs to capture ciphertext encrypted by the `GOSTCTR` implementation where the `G3413CTRBlockCipher` processed more than 255 blocks of data, resulting in keystream reuse. An attack typically requires capturing these overlapping ciphertexts to perform cryptanalysis and uncover the underlying data.\nThe primary impact of this vulnerability is the potential loss of confidentiality for data encrypted by the `GOSTCTR` implementation. This can compromise encrypted communications or sensitive stored data by allowing an attacker to fully recover the plaintext.", "affected_release" : [ { "product_name" : "Red Hat AMQ Broker 7.12.7", "release_date" : "2026-05-06T00:00:00Z", "advisory" : "RHSA-2026:14276", "cpe" : "cpe:/a:redhat:amq_broker:7.12", "package" : "bcprov-jdk18on" }, { "product_name" : "Red Hat AMQ Broker 7.13.5", "release_date" : "2026-05-06T00:00:00Z", "advisory" : "RHSA-2026:14272", "cpe" : "cpe:/a:redhat:amq_broker:7.13", "package" : "bcprov-jdk18on" }, { "product_name" : "Red Hat Build of Apache Camel 4.14 for Quarkus 3.27", "release_date" : "2026-05-05T00:00:00Z", "advisory" : "RHSA-2026:13631", "cpe" : "cpe:/a:redhat:apache_camel_quarkus:3.27", "package" : "bcprov-jdk18on" }, { "product_name" : "Red Hat build of Apache Camel 4.18.1 for Spring Boot 3.5.14", "release_date" : "2026-05-14T00:00:00Z", "advisory" : "RHSA-2026:17668", "cpe" : "cpe:/a:redhat:apache_camel_spring_boot:4.18", "package" : "bcprov-debug-jdk15on" }, { "product_name" : "Red Hat build of Apache Camel 4.18.1 for Spring Boot 3.5.14", "release_date" : "2026-05-14T00:00:00Z", "advisory" : "RHSA-2026:17668", "cpe" : "cpe:/a:redhat:apache_camel_spring_boot:4.18", "package" : "bcprov-jdk15on" }, { "product_name" : "Red Hat build of Apache Camel 4.18.1 for Spring Boot 3.5.14", "release_date" : "2026-05-14T00:00:00Z", "advisory" : "RHSA-2026:17668", "cpe" : "cpe:/a:redhat:apache_camel_spring_boot:4.18", "package" : "bcprov-jdk18on" }, { "product_name" : "Red Hat build of Apache Camel 4.18.1 for Spring Boot 3.5.14", "release_date" : "2026-05-14T00:00:00Z", "advisory" : "RHSA-2026:17668", "cpe" : "cpe:/a:redhat:apache_camel_spring_boot:4.18", "package" : "bcprov-lts8on" }, { "product_name" : "Red Hat build of Quarkus 3.20.6.SP1", "release_date" : "2026-05-05T00:00:00Z", "advisory" : "RHSA-2026:11720", "cpe" : "cpe:/a:redhat:quarkus:3.20::el8", "package" : "bcprov-jdk18on" }, { "product_name" : "Red Hat build of Quarkus 3.27.3.SP1", "release_date" : "2026-05-05T00:00:00Z", "advisory" : "RHSA-2026:11721", "cpe" : "cpe:/a:redhat:quarkus:3.27::el8", "package" : "bcprov-jdk18on" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 8.1", "release_date" : "2026-05-18T00:00:00Z", "advisory" : "RHSA-2026:18059", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9", "package" : "bcprov-ext-jdk15on" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 8.1", "release_date" : "2026-05-18T00:00:00Z", "advisory" : "RHSA-2026:18059", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9", "package" : "bcprov-ext-jdk18on" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 8.1", "release_date" : "2026-05-18T00:00:00Z", "advisory" : "RHSA-2026:18059", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9", "package" : "bcprov-jdk12" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 8.1", "release_date" : "2026-05-18T00:00:00Z", "advisory" : "RHSA-2026:18059", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9", "package" : "bcprov-jdk15" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 8.1", "release_date" : "2026-05-18T00:00:00Z", "advisory" : "RHSA-2026:18059", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9", "package" : "bcprov-jdk15on" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 8.1", "release_date" : "2026-05-18T00:00:00Z", "advisory" : "RHSA-2026:18059", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9", "package" : "bcprov-jdk15to18" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 8.1", "release_date" : "2026-05-18T00:00:00Z", "advisory" : "RHSA-2026:18059", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9", "package" : "bcprov-jdk18on" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8", "release_date" : "2026-05-18T00:00:00Z", "advisory" : "RHSA-2026:18054", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8", "package" : "eap8-bouncycastle-0:1.84.0-1.redhat_00001.1.el8eap" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9", "release_date" : "2026-05-18T00:00:00Z", "advisory" : "RHSA-2026:18055", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9", "package" : "eap8-bouncycastle-0:1.84.0-1.redhat_00001.1.el9eap" } ], "package_state" : [ { "product_name" : "Cryostat 4", "fix_state" : "Not affected", "package_name" : "bcprov-jdk18on", "cpe" : "cpe:/a:redhat:cryostat:4" }, { "product_name" : "OpenShift Developer Tools and Services", "fix_state" : "Affected", "package_name" : "jenkins", "cpe" : "cpe:/a:redhat:ocp_tools" }, { "product_name" : "OpenShift Developer Tools and Services", "fix_state" : "Affected", "package_name" : "jenkins-2-plugins", "cpe" : "cpe:/a:redhat:ocp_tools" }, { "product_name" : "OpenShift Developer Tools and Services", "fix_state" : "Affected", "package_name" : "ocp-tools-4/jenkins-rhel8", "cpe" : "cpe:/a:redhat:ocp_tools" }, { "product_name" : "OpenShift Developer Tools and Services", "fix_state" : "Affected", "package_name" : "ocp-tools-4/jenkins-rhel9", "cpe" : "cpe:/a:redhat:ocp_tools" }, { "product_name" : "Red Hat AMQ Broker 7", "fix_state" : "Not affected", "package_name" : "bcprov-jdk15on", "cpe" : "cpe:/a:redhat:amq_broker:7" }, { "product_name" : "Red Hat AMQ Clients", "fix_state" : "Affected", "package_name" : "bcprov-jdk15on", "cpe" : "cpe:/a:redhat:amq_clients:2023" }, { "product_name" : "Red Hat AMQ Clients", "fix_state" : "Affected", "package_name" : "bcprov-jdk18on", "cpe" : "cpe:/a:redhat:amq_clients:2023" }, { "product_name" : "Red Hat build of Apache Camel 4 for Quarkus 3", "fix_state" : "Affected", "package_name" : "bcprov-jdk18on", "cpe" : "cpe:/a:redhat:camel_quarkus:3" }, { "product_name" : "Red Hat build of Apicurio Registry 3", "fix_state" : "Affected", "package_name" : "bcprov-jdk18on", "cpe" : "cpe:/a:redhat:apicurio_registry:3" }, { "product_name" : "Red Hat build of Apicurio Registry 3", "fix_state" : "Affected", "package_name" : "bcprov-lts8on", "cpe" : "cpe:/a:redhat:apicurio_registry:3" }, { "product_name" : "Red Hat build of Debezium 3", "fix_state" : "Will not fix", "package_name" : "bcprov-ext-jdk15on", "cpe" : "cpe:/a:redhat:debezium:3" }, { "product_name" : "Red Hat build of Debezium 3", "fix_state" : "Will not fix", "package_name" : "bcprov-jdk18on", "cpe" : "cpe:/a:redhat:debezium:3" }, { "product_name" : "Red Hat build of Debezium 3", "fix_state" : "Will not fix", "package_name" : "bcprov-lts8on", "cpe" : "cpe:/a:redhat:debezium:3" }, { "product_name" : "Red Hat Build of Keycloak", "fix_state" : "Affected", "package_name" : "bcprov-jdk18on", "cpe" : "cpe:/a:redhat:build_keycloak:" }, { "product_name" : "Red Hat Data Grid 8", "fix_state" : "Not affected", "package_name" : "bcprov-jdk15", "cpe" : "cpe:/a:redhat:jboss_data_grid:8" }, { "product_name" : "Red Hat Data Grid 8", "fix_state" : "Not affected", "package_name" : "bcprov-jdk15on", "cpe" : "cpe:/a:redhat:jboss_data_grid:8" }, { "product_name" : "Red Hat Data Grid 8", "fix_state" : "Not affected", "package_name" : "bcprov-jdk15to18", "cpe" : "cpe:/a:redhat:jboss_data_grid:8" }, { "product_name" : "Red Hat Data Grid 8", "fix_state" : "Not affected", "package_name" : "bcprov-jdk18on", "cpe" : "cpe:/a:redhat:jboss_data_grid:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "pki-core:10.6/resteasy", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Will not fix", "package_name" : "pki-deps:10.6/resteasy", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Affected", "package_name" : "jmc", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "resteasy", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Fuse 7", "fix_state" : "Will not fix", "package_name" : "bcprov-debug-jdk18on", "cpe" : "cpe:/a:redhat:jboss_fuse:7" }, { "product_name" : "Red Hat Fuse 7", "fix_state" : "Will not fix", "package_name" : "bcprov-ext-jdk15on", "cpe" : "cpe:/a:redhat:jboss_fuse:7" }, { "product_name" : "Red Hat Fuse 7", "fix_state" : "Will not fix", "package_name" : "bcprov-ext-jdk18on", "cpe" : "cpe:/a:redhat:jboss_fuse:7" }, { "product_name" : "Red Hat Fuse 7", "fix_state" : "Will not fix", "package_name" : "bcprov-jdk15", "cpe" : "cpe:/a:redhat:jboss_fuse:7" }, { "product_name" : "Red Hat Fuse 7", "fix_state" : "Will not fix", "package_name" : "bcprov-jdk15on", "cpe" : "cpe:/a:redhat:jboss_fuse:7" }, { "product_name" : "Red Hat Fuse 7", "fix_state" : "Will not fix", "package_name" : "bcprov-jdk15to18", "cpe" : "cpe:/a:redhat:jboss_fuse:7" }, { "product_name" : "Red Hat Fuse 7", "fix_state" : "Will not fix", "package_name" : "bcprov-jdk16", "cpe" : "cpe:/a:redhat:jboss_fuse:7" }, { "product_name" : "Red Hat Fuse 7", "fix_state" : "Will not fix", "package_name" : "bcprov-jdk18on", "cpe" : "cpe:/a:redhat:jboss_fuse:7" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 7", "fix_state" : "Affected", "package_name" : "bcprov-jdk12", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 7", "fix_state" : "Affected", "package_name" : "bcprov-jdk15", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 7", "fix_state" : "Affected", "package_name" : "bcprov-jdk15on", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 7", "fix_state" : "Affected", "package_name" : "bcprov-jdk18on", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack", "fix_state" : "Not affected", "package_name" : "bcprov-ext-jdk15on", "cpe" : "cpe:/a:redhat:jbosseapxp" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack", "fix_state" : "Not affected", "package_name" : "bcprov-ext-jdk18on", "cpe" : "cpe:/a:redhat:jbosseapxp" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack", "fix_state" : "Not affected", "package_name" : "bcprov-jdk12", "cpe" : "cpe:/a:redhat:jbosseapxp" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack", "fix_state" : "Not affected", "package_name" : "bcprov-jdk15", "cpe" : "cpe:/a:redhat:jbosseapxp" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack", "fix_state" : "Not affected", "package_name" : "bcprov-jdk15on", "cpe" : "cpe:/a:redhat:jbosseapxp" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack", "fix_state" : "Not affected", "package_name" : "bcprov-jdk15to18", "cpe" : "cpe:/a:redhat:jbosseapxp" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack", "fix_state" : "Not affected", "package_name" : "bcprov-jdk18on", "cpe" : "cpe:/a:redhat:jbosseapxp" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack", "fix_state" : "Not affected", "package_name" : "bcprov-jdk18on-1.83.0.redhat-00001.jar", "cpe" : "cpe:/a:redhat:jbosseapxp" }, { "product_name" : "Red Hat OpenShift AI (RHOAI)", "fix_state" : "Affected", "package_name" : "rhoai/odh-modelmesh-rhel8", "cpe" : "cpe:/a:redhat:openshift_ai" }, { "product_name" : "Red Hat OpenShift AI (RHOAI)", "fix_state" : "Affected", "package_name" : "rhoai/odh-modelmesh-rhel9", "cpe" : "cpe:/a:redhat:openshift_ai" }, { "product_name" : "Red Hat OpenShift Dev Spaces", "fix_state" : "Affected", "package_name" : "devspaces/openvsx-rhel9", "cpe" : "cpe:/a:redhat:openshift_devspaces:3" }, { "product_name" : "Red Hat OpenShift Dev Spaces", "fix_state" : "Affected", "package_name" : "devspaces/pluginregistry-rhel9", "cpe" : "cpe:/a:redhat:openshift_devspaces:3" }, { "product_name" : "Red Hat Process Automation 7", "fix_state" : "Affected", "package_name" : "bcprov-jdk15on", "cpe" : "cpe:/a:redhat:jboss_enterprise_bpms_platform:7" }, { "product_name" : "Red Hat Process Automation 7", "fix_state" : "Affected", "package_name" : "bcprov-jdk15to18", "cpe" : "cpe:/a:redhat:jboss_enterprise_bpms_platform:7" }, { "product_name" : "Red Hat Satellite 6", "fix_state" : "Not affected", "package_name" : "candlepin", "cpe" : "cpe:/a:redhat:satellite:6" }, { "product_name" : "Red Hat Satellite 6", "fix_state" : "Not affected", "package_name" : "satellite:el8/candlepin", "cpe" : "cpe:/a:redhat:satellite:6" }, { "product_name" : "Red Hat Single Sign-On 7", "fix_state" : "Will not fix", "package_name" : "bcprov-jdk15on", "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7" }, { "product_name" : "streams for Apache Kafka 2", "fix_state" : "Affected", "package_name" : "bcprov-jdk15on", "cpe" : "cpe:/a:redhat:amq_streams:2" }, { "product_name" : "streams for Apache Kafka 2", "fix_state" : "Affected", "package_name" : "bcprov-jdk18on", "cpe" : "cpe:/a:redhat:amq_streams:2" }, { "product_name" : "streams for Apache Kafka 3", "fix_state" : "Affected", "package_name" : "bcprov-jdk15on", "cpe" : "cpe:/a:redhat:amq_streams:3" }, { "product_name" : "streams for Apache Kafka 3", "fix_state" : "Not affected", "package_name" : "bcprov-jdk18on", "cpe" : "cpe:/a:redhat:amq_streams:3" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2025-14813\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-14813\nhttps://github.com/bcgit/bc-java/wiki/CVE%E2%80%902025%E2%80%9014813" ], "name" : "CVE-2025-14813", "mitigation" : { "value" : "To mitigate this vulnerability, strictly limit the payload encrypted under a single key and Initialization Vector (IV) pair using the GOSTCTR implementation and G3413CTRBlockCipher to a maximum of 255 blocks. Alternatively, transition to a more secure, standardized and authenticated encryption mode.", "lang" : "en:us" }, "csaw" : false }