Follow

> If you are using ECDSA signatures for any of these security mechanisms, then an attacker can trivially and completely bypass them if your server is running any Java 15, 16, 17, or 18 version before the April 2022 Critical Patch Update (CPU).

neilmadden.blog/2022/04/19/psy

Sign in to participate in the conversation
kosmos.social

kosmos.social is a friendly place for tooting, run by the Kosmos open-source co-operative.