NuytsTech Security

CVE-2014-9970

by ·

jasypt before 1.9.2 allows a timing attack against the password hash comparison.

Date published : 2017-05-21

https://sourceforge.net/p/jasypt/code/668/

https://access.redhat.com/errata/RHSA-2017:2546

Tags: