In the Bouncy Castle JCE Provider version 1.55 and earlier the DSA key pair generator generates a weak private key if used with default values. If the JCA key pair generator is not explicitly initialised with DSA parameters, 1.55 and earlier generates a private value assuming a 1024 bit key size. In earlier releases this can be dealt with by explicitly passing parameters to the key pair generator.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-06-04T13:00:00

Updated: 2024-08-06T03:55:27.422Z

Reserved: 2018-06-04T00:00:00

Link: CVE-2016-1000343

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-06-04T13:29:00.437

Modified: 2024-11-21T02:43:03.267

Link: CVE-2016-1000343

cve-icon Redhat

Severity : Low

Publid Date: 2018-06-07T00:00:00Z

Links: CVE-2016-1000343 - Bugzilla