VYPR
Moderate severityNVD Advisory· Published Nov 1, 2021· Updated Aug 4, 2024

Apache MINA HTTP listener DOS

CVE-2021-41973

Description

In Apache MINA, a specifically crafted, malformed HTTP request may cause the HTTP Header decoder to loop indefinitely. The decoder assumed that the HTTP Header begins at the beginning of the buffer and loops if there is more data than expected. Please update MINA to 2.1.5 or greater.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.apache.mina:mina-coreMaven
>= 2.1.0, < 2.1.52.1.5
org.apache.mina:mina-coreMaven
< 2.0.222.0.22

Affected products

2

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.