Upgrade protobufjs to version 6.11.4, 7.2.4 or higher.

jbcs-httpd24-mod_cluster-native vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the jbcs-httpd24-mod_cluster-native package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
H HTTP Request Smuggling	<0:1.3.16-10.Final_redhat_2.el8jbcs
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0:1.3.16-10.Final_redhat_2.el8jbcs
H Use After Free	<0:1.3.16-10.Final_redhat_2.el8jbcs
H Authentication Bypass	<0:1.3.16-5.Final_redhat_2.el8jbcs
H Use After Free	<0:1.3.16-5.Final_redhat_2.el8jbcs
H Information Exposure	<0:1.3.16-5.Final_redhat_2.el8jbcs
M NULL Pointer Dereference	<0:1.3.16-9.Final_redhat_2.el8jbcs
M Information Exposure	<0:1.3.16-9.Final_redhat_2.el8jbcs
H Server-Side Request Forgery (SSRF)	<0:1.3.16-7.Final_redhat_2.el8jbcs
M NULL Pointer Dereference	<0:1.3.16-9.Final_redhat_2.el8jbcs
M Out-of-bounds Read	<0:1.3.16-9.Final_redhat_2.el8jbcs
H Improper Certificate Validation	<0:1.3.16-5.Final_redhat_2.el8jbcs
H Resource Exhaustion	<0:1.3.16-10.Final_redhat_2.el8jbcs
H NULL Pointer Dereference	<0:1.3.16-10.Final_redhat_2.el8jbcs
H Out-of-bounds Write	<0:1.3.16-10.Final_redhat_2.el8jbcs
H Use After Free	<0:1.3.16-10.Final_redhat_2.el8jbcs
H Use After Free	<0:1.3.16-10.Final_redhat_2.el8jbcs
H Uncontrolled Recursion	<0:1.3.16-5.Final_redhat_2.el8jbcs
H Information Exposure	<0:1.3.16-5.Final_redhat_2.el8jbcs
M Improper Input Validation	<0:1.3.16-9.Final_redhat_2.el8jbcs
M Integer Overflow or Wraparound	<0:1.3.16-9.Final_redhat_2.el8jbcs
M Out-of-Bounds	<0:1.3.16-9.Final_redhat_2.el8jbcs
M NULL Pointer Dereference	<0:1.3.16-9.Final_redhat_2.el8jbcs
M NULL Pointer Dereference	<0:1.3.16-9.Final_redhat_2.el8jbcs
H Information Exposure	<0:1.3.16-5.Final_redhat_2.el8jbcs
M Out-of-Bounds	<0:1.3.16-9.Final_redhat_2.el8jbcs
M Integer Overflow or Wraparound	<0:1.3.16-9.Final_redhat_2.el8jbcs
M Out-of-bounds Read	<0:1.3.16-9.Final_redhat_2.el8jbcs
M Improper Authentication	<0:1.3.16-9.Final_redhat_2.el8jbcs

Vulnerability

Vulnerable Version

HTTP Request Smuggling

<0:1.3.16-10.Final_redhat_2.el8jbcs

Loop with Unreachable Exit Condition ('Infinite Loop')

<0:1.3.16-10.Final_redhat_2.el8jbcs

Use After Free

<0:1.3.16-10.Final_redhat_2.el8jbcs

Authentication Bypass

<0:1.3.16-5.Final_redhat_2.el8jbcs

Use After Free

<0:1.3.16-5.Final_redhat_2.el8jbcs