pkg:maven/org.jboss.netty/netty
Type
maven
Namespace
org.jboss.netty
Name
netty
Known advisories, vulnerabilities and fixes for org.jboss.netty/netty package.
Critical
1
High
4
Moderate
5
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | < 4.0.0 |
CVE-2021-21290
|
 MAVEN:GHSA-5MCR-GQ6C-3HQ2
|
Local Information Disclosure Vulnerability in Netty on Unix-Like systems | moderate |
2021-02-08T21:17:48
(3 years ago) |
|
| Affected | < 4.0.0 |
CVE-2021-37137
|
MAVEN:GHSA-9VJP-V76F-G363
|
SnappyFrameDecoder doesn't restrict chunk length any may buffer skippable chunks in an unnecessary way | high |
2021-09-09T17:11:31
(3 years ago) |
|
| Affected | < 4.0.0 |
CVE-2019-20444
|
MAVEN:GHSA-CQQJ-4P63-RRMM
|
HTTP Request Smuggling in Netty | critical |
2020-02-21T18:55:24
(4 years ago) |
|
| Affected | < 4.0.0 |
CVE-2021-21409
|
MAVEN:GHSA-F256-J965-7F32
|
Possible request smuggling in HTTP/2 due missing validation of content-length | moderate |
2021-03-30T15:10:38
(3 years ago) |
|
| Affected | < 4.0.0 |
CVE-2021-37136
|
MAVEN:GHSA-GRG4-WF29-R9VV
|
Bzip2Decoder doesn't allow setting size restrictions for decompressed data | high |
2021-09-09T17:11:21
(3 years ago) |
|
| Affected | < 4.0.0 |
CVE-2019-20445
|
MAVEN:GHSA-P2V9-G2QV-P635
|
HTTP Request Smuggling in Netty | moderate |
2020-02-21T18:55:04
(4 years ago) |
|
| Affected | < 4.0.0 |
CVE-2019-16869
|
MAVEN:GHSA-P979-4MFW-53VG
|
HTTP Request Smuggling in Netty | high |
2019-10-11T18:41:23
(5 years ago) |
|
| Affected | < 4.0.0 |
CVE-2021-21295
|
MAVEN:GHSA-WM47-8V5P-WJPJ
|
Possible request smuggling in HTTP/2 due missing validation | moderate |
2021-03-09T18:49:49
(3 years ago) |
|
| Affected | < 4.0.0 |
CVE-2021-43797
|
MAVEN:GHSA-WX5J-54MM-RQQQ
|
HTTP request smuggling in netty | moderate |
2021-12-09T19:09:17
(2 years ago) |
|
| Affected | >= 3.10.0, < 3.10.3.Final < 3.9.8.Final |
CVE-2015-2156
|
MAVEN:GHSA-XFV3-RRFM-F2RV
|
Information Exposure in Netty | high |
2020-06-30T21:01:21
(4 years ago) |
|
| Fixed | = 3.10.3.Final = 3.9.8.Final |
CVE-2015-2156
|
MAVEN:GHSA-XFV3-RRFM-F2RV
|
Information Exposure in Netty | high |
2020-06-30T21:01:21
(4 years ago) |