CVE-2015-6644

Metadata

medium
4.3
bouncycastle
CVE-2015-6644
cve.mitre.org
2016-01-06
2017-10-23 14:19
CVE-2015-6644 bouncycastle
2017-07-20 21:31
2017-06-16 19:15
2017-05-10 23:49
2017-04-20 05:03
2017-04-14 10:21
2017-04-13 19:03

Description

Bouncy Castle in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to obtain sensitive information via a crafted application, aka internal bug 24106146.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
trusty bouncycastle None
upstream bouncycastle 1.56-1
xenial bouncycastle None

Unaffected

Release Package Reason
precise bouncycastle ignored
precise/esm bouncycastle DNE
vivid/stable-phone-overlay bouncycastle DNE
vivid/ubuntu-core bouncycastle DNE
yakkety bouncycastle ignored
zesty bouncycastle not-affected
artful bouncycastle not-affected
devel bouncycastle not-affected