USN-6307-1: JOSE for C/C++ vulnerability
It was discovered that JOSE for C/C++ AES GCM decryption routine incorrectly
uses the Tag length from the actual Authentication Tag provided in the JWE.
An attacker could use this to cause a denial of service (system crash) or
might expose sensitive information.
Source: USN-6307-1: JOSE for C/C++ vulnerability