Upgrade Bouncy Castle to 1.78 or newer #594

barchetta · 2024-04-19T16:04:09Z

Please upgrade Bouncy Castle to 1.78 or newer

r0bertini · 2024-04-29T11:10:06Z

There is high security issue based on the release notes to versions prior 1.78, so please prioritize this upgrade accordingly, thanks.

jyotisaini · 2024-04-29T14:11:24Z

Hi @robander - This is already prioritised and is in our roadmap to upgrade the bouncy castle. Please watch this issue for further updates.

r0bertini · 2024-05-02T08:50:05Z

Thanks @jyotisaini I assume there is no ETA which could be shared here?

barchetta · 2024-05-20T16:02:46Z

Any status on this?

jyotisaini · 2024-05-21T18:55:54Z

ETA for the bouncy castle upgrade is 06/04.

r0bertini · 2024-06-05T07:12:17Z

@jyotisaini was this released yesterday or is there a new timeline please ?

jyotisaini · 2024-06-05T19:09:43Z

Hi Robert this is scheduled to go out on 06/11.

r0bertini · 2024-06-19T12:48:26Z

Just confirming this has been released yesterday - v3.43.2 - see pom.xml file in v3.43.1...v3.43.2

barchetta · 2024-06-20T16:19:33Z

Closing as this is fixed in v3.43.2

jyotisaini added the SDK Issue pertains to the SDK itself and not specific to any service label May 21, 2024

barchetta closed this as completed Jun 20, 2024

Provide feedback