pkg:maven/io.netty/netty-codec-http
Type
maven
Namespace
io.netty
Name
netty-codec-http
Known advisories, vulnerabilities and fixes for io.netty/netty-codec-http package.
Critical
1
Moderate
5
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 4.1.76.Final |
CVE-2022-24823
|
 MAVEN:GHSA-269Q-HMXG-M83Q
|
Local Information Disclosure Vulnerability in io.netty:netty-codec-http | moderate |
2022-05-10T08:46:50
(2 years ago) |
|
| Fixed | = 4.1.77.Final |
CVE-2022-24823
|
MAVEN:GHSA-269Q-HMXG-M83Q
|
Local Information Disclosure Vulnerability in io.netty:netty-codec-http | moderate |
2022-05-10T08:46:50
(2 years ago) |
|
| Affected | < 4.1.108.Final |
CVE-2024-29025
|
MAVEN:GHSA-5JPM-X58V-624V
|
Netty's HttpPostRequestDecoder can OOM | moderate |
2024-03-25T19:40:50
(5 months ago) |
|
| Fixed | = 4.1.108.Final |
CVE-2024-29025
|
MAVEN:GHSA-5JPM-X58V-624V
|
Netty's HttpPostRequestDecoder can OOM | moderate |
2024-03-25T19:40:50
(5 months ago) |
|
| Affected | >= 4.0.0, < 4.1.59.Final |
CVE-2021-21290
|
MAVEN:GHSA-5MCR-GQ6C-3HQ2
|
Local Information Disclosure Vulnerability in Netty on Unix-Like systems | moderate |
2021-02-08T21:17:48
(3 years ago) |
|
| Fixed | = 4.1.59.Final |
CVE-2021-21290
|
MAVEN:GHSA-5MCR-GQ6C-3HQ2
|
Local Information Disclosure Vulnerability in Netty on Unix-Like systems | moderate |
2021-02-08T21:17:48
(3 years ago) |
|
| Affected | >= 4.0.0, < 4.1.44 |
CVE-2019-20444
|
MAVEN:GHSA-CQQJ-4P63-RRMM
|
HTTP Request Smuggling in Netty | critical |
2020-02-21T18:55:24
(4 years ago) |
|
| Fixed | = 4.1.44 |
CVE-2019-20444
|
MAVEN:GHSA-CQQJ-4P63-RRMM
|
HTTP Request Smuggling in Netty | critical |
2020-02-21T18:55:24
(4 years ago) |
|
| Affected | >= 4.1.83.Final, < 4.1.86.Final |
CVE-2022-41915
|
MAVEN:GHSA-HH82-3PMQ-7FRP
|
Netty vulnerable to HTTP Response splitting from assigning header value iterator | moderate |
2022-12-12T21:25:44
(21 months ago) |
|
| Fixed | = 4.1.86.Final |
CVE-2022-41915
|
MAVEN:GHSA-HH82-3PMQ-7FRP
|
Netty vulnerable to HTTP Response splitting from assigning header value iterator | moderate |
2022-12-12T21:25:44
(21 months ago) |
|
| Affected | >= 4.0.0, < 4.1.71.Final |
CVE-2021-43797
|
MAVEN:GHSA-WX5J-54MM-RQQQ
|
HTTP request smuggling in netty | moderate |
2021-12-09T19:09:17
(2 years ago) |
|
| Fixed | = 4.1.71.Final |
CVE-2021-43797
|
MAVEN:GHSA-WX5J-54MM-RQQQ
|
HTTP request smuggling in netty | moderate |
2021-12-09T19:09:17
(2 years ago) |