io.netty:netty-codec@4.1.26.Final vulnerabilities
-
latest version
4.1.108.Final
-
latest non vulnerable version
-
first published
12 years ago
-
latest version published
a month ago
-
licenses detected
- [4.0.0.Alpha1,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the io.netty:netty-codec package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
io.netty:netty-codec is an event-driven asynchronous network application framework. Affected versions of this package are vulnerable to Denial of Service (DoS). How to fix Denial of Service (DoS)? Upgrade |
[,4.1.68.Final)
|
io.netty:netty-codec is an event-driven asynchronous network application framework. Affected versions of this package are vulnerable to Denial of Service (DoS). How to fix Denial of Service (DoS)? Upgrade |
[,4.1.68.Final)
|
io.netty:netty-codec is an event-driven asynchronous network application framework. Affected versions of this package are vulnerable to Uncontrolled Memory Allocation while decoding a ZlibEncoded byte stream. An attacker could send a large ZlibEncoded byte stream to the Netty server, forcing the server to allocate all of its free memory to a single decoder. How to fix Uncontrolled Memory Allocation? Upgrade |
[4.1.0.Final,4.1.46.Final)
|