CVE-2025-8916 unbounded memory allocation in PKIXCertPathReviewer when processing malicious certificate chains with oversized name constraint structures, enabling DoS (#1002)

Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: vharseko <6818498+vharseko@users.noreply.github.com>

Author: Copilot

pom.xml

@@ -139,7 +139,7 @@
     <logback.version>1.3.15</logback.version>
     <netty.version>4.1.132.Final</netty.version>
     <netty-tcnative-boringssl.version>2.0.69.Final</netty-tcnative-boringssl.version>
-    <bouncycastle.version>1.81</bouncycastle.version>
+    <bouncycastle.version>1.82</bouncycastle.version>
     <javadoc.opts>-Xdoclint:none</javadoc.opts>
     <java.surefire.options>
       -Xmx1g