000019349 - RSA BSAFE Cert-J X500Name class does not handle strings using RFC2253 format correctly

Document created by RSA Customer Support Employee on Jun 15, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000019349
Applies ToRSA BSAFE Cert-J 2.0.1
IssueRSA BSAFE Cert-J X500Name class does not handle strings using RFC2253 format correctly
The RFC states that non-typeable characters can be escaped with a backslash, for example: "SN=Lu\C4\8Di\C4\87". To correctly represent this as a Java string, it would look like "SN=Lu\\C4\\8Di\\C4\\87". Cert-J was not correctly interpreting the escaped values.
CauseThe X500Name class was just stripping out the '/' instead of converting the hex value to a character
ResolutionThis was fixed in RSA BSAFE Cert-J 2.0.2 and above - please contact RSA Security Technical Support to request an upgrade to fix this issue.
Legacy Article IDa7806

Attachments

    Outcomes