org.apache.ignite:ignite-core@2.9.0 vulnerabilities
-
latest version
2.16.0
-
latest non vulnerable version
-
first published
9 years ago
-
latest version published
4 months ago
-
licenses detected
- [1.0.0-RC1,3.0.0-beta1)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.apache.ignite:ignite-core package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.apache.ignite:ignite-core is a memory-centric distributed database, caching, and processing platform for transactional, analytical, and streaming workloads delivering in-memory speeds at petabyte scale. Affected versions of this package are vulnerable to Memory Leak via the thin client protocol, which interprets the first 4 bytes as message size and allocates an array for it. Any "big" 4 bytes sent on a thin client port could lead to Out Of Memory. How to fix Memory Leak? Upgrade |
[,2.13.0)
|