CVE-2026-8149 / GHSA-mx76-r943-rf8g on bc-fips:2.1.2 #2310

MNKCrypto · 2026-05-27T10:07:11Z

MNKCrypto
May 27, 2026

In our org, we are currently using org.bouncycastle:bc-fips:2.1.2 and noticed the recently published advisory for CVE-2026-8149 / GHSA-mx76-r943-rf8g.

Could you please share:

whether a patched GA release for bc-fips is planned,
the expected version number,
and if there is an estimated timeline for availability?

We also noticed references to 2.1.3-SNAPSHOT, so we wanted to confirm whether an official production-ready release is expected soon.

Thank you for your help and for maintaining the project.

ldapster · 2026-06-04T14:58:29Z

ldapster
Jun 4, 2026

Hi is there any updated status on on this CVE?

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2026-8149 / GHSA-mx76-r943-rf8g on bc-fips:2.1.2 #2310

Uh oh!

{{title}}

Uh oh!

Replies: 1 comment

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

CVE-2026-8149 / GHSA-mx76-r943-rf8g on bc-fips:2.1.2 #2310

Uh oh!

MNKCrypto May 27, 2026

Replies: 1 comment

Uh oh!

ldapster Jun 4, 2026

MNKCrypto
May 27, 2026

ldapster
Jun 4, 2026