Oxalis 4.1.2 uses version 1.57 of the bouncycastle jars. This version has some identified vulnerabilities (not sure if it has any impact to Oxalis)
CVE-2017-13098 (Medium)
CVE-2018-1000180 (High)
CVE-2018-1000613 (Critical)
Are there plans to upgrade to latest bouncycastle version 1.64?
Oxalis 4.1.2 uses version 1.57 of the bouncycastle jars. This version has some identified vulnerabilities (not sure if it has any impact to Oxalis) CVE-2017-13098 (Medium) CVE-2018-1000180 (High) CVE-2018-1000613 (Critical)
Are there plans to upgrade to latest bouncycastle version 1.64?