php · web-token/jwt-libraryCritical

web-token/jwt-library: PBES2AESKW enforces max iteration count to prevent DoS

PBES2AESKW::unwrapKey() now enforces a configurable maximum iteration count (DEFAULT_MAX_COUNT = 1_000_000) in checkHeaderAdditionalParameters() before any PBKD

19 Jun 2026Read 1 minSeverity: act now

What changed

PBES2AESKW::unwrapKey() now enforces a configurable maximum iteration count (DEFAULT_MAX_COUNT = 1_000_000) in checkHeaderAdditionalParameters() before any PBKDF2 computation, preventing CPU amplification DoS.

Who it affects

Applications that register any PBES2-HS*+A*KW algorithm in their decryption AlgorithmManager.

What to do today

Upgrade to the patched version or validate/limit the p2c header with a custom header checker, or do not enable PBES2 algorithms for untrusted tokens.

The trail

Collected→ Audited→ Written→ Published

Source

GitHub Advisory · web-token/jwt-library

web-token/jwt-library: PBES2AESKW enforces max iteration count to prevent DoS

What changed

Who it affects

What to do today

More on web-token/jwt-library

Grav CMS Backup Endpoint Exposes Admin Password Hashes and Full Installation

Kirby CMS Missing Authorization Check in Pages Field Picker