DESCRIPTION: In jose4j before 0.9.6, an attacker can cause a Denial-of-Service (DoS) condition by crafting a malicious JSON Web Encryption (JWE) token with an exceptionally high compression ratio.When this token is processed by the server, it results in significant memory allocation and processing...
DESCRIPTION: In jose4j before 0.9.6, an attacker can cause a Denial-of-Service (DoS) condition by crafting a malicious JSON Web Encryption (JWE) token with an exceptionally high compression ratio.When this token is processed by the server, it results in significant memory allocation and processing...