[VFS-551] BUG - Use of a Broken or Risky Cryptographic Algorithm - DefaultCryptor.java - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.0
Fix Version/s: 2.1
Labels:
None

Description

Good day,

We are currently using "Commons-vfs2-2.0" and in the analysis of veracode found this bug in DefaultCryptor.java (near to the line 52) in this class, used "AES":

Description:

The use of a broken or risky cryptographic algorithm is an unnecessary risk that may result in the disclosure of sensitive information.

Attachments

Activity

People

Assignee:: Bernd Eckenfels

Reporter:: David Camilo Espitia Manrique

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 26/Dec/14 22:24

Updated:: 19/May/16 18:25

Resolved:: 27/Dec/14 09:36