Netty HttpPostRequestDecoder can OOM
Description
Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. The HttpPostRequestDecoder can be tricked to accumulate data. While the decoder can store items on the disk if configured so, there are no limits to the number of fields the form can have, an attacher can send a chunked post consisting of many small fields that will be accumulated in the bodyListHttpData list. The decoder cumulates bytes in the undecodedChunk buffer until it can decode a field, this field can cumulate data without limits. This vulnerability is fixed in 4.1.108.Final.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
io.netty:netty-codec-httpMaven | < 4.1.108.Final | 4.1.108.Final |
Affected products
254- osv-coords253 versionspkg:apk/chainguard/celeborn-0.5pkg:apk/chainguard/cloudwatch-exporterpkg:apk/chainguard/docker-selenium-jre-bcfipspkg:apk/chainguard/docker-selenium-jre-bcfips-supervisor-configpkg:apk/chainguard/druidpkg:apk/chainguard/elasticsearch-7pkg:apk/chainguard/elasticsearch-7-bitnamipkg:apk/chainguard/elasticsearch-7-iamguardedpkg:apk/chainguard/elasticsearch-8pkg:apk/chainguard/elasticsearch-8-bitnamipkg:apk/chainguard/elasticsearch-8-configpkg:apk/chainguard/elasticsearch-8-iamguardedpkg:apk/chainguard/elasticsearch-configpkg:apk/chainguard/grpc-java-fips-1.56.0pkg:apk/chainguard/grpc-java-fips-1.56.0-m2pkg:apk/chainguard/keycloakpkg:apk/chainguard/keycloak-bitnami-compatpkg:apk/chainguard/keycloak-bitnami-fipspkg:apk/chainguard/keycloak-compatpkg:apk/chainguard/keycloak-fipspkg:apk/chainguard/keycloak-fips-bitnami-compatpkg:apk/chainguard/keycloak-fips-policy-140-2pkg:apk/chainguard/keycloak-fips-policy-140-3pkg:apk/chainguard/keycloak-iamguarded-compatpkg:apk/chainguard/keycloak-iamguarded-fipspkg:apk/chainguard/management-api-for-apache-cassandrapkg:apk/chainguard/management-api-for-apache-cassandra-4.0pkg:apk/chainguard/management-api-for-apache-cassandra-4.0-compatpkg:apk/chainguard/management-api-for-apache-cassandra-compatpkg:apk/chainguard/neo4jpkg:apk/chainguard/neo4j-oci-entrypointpkg:apk/chainguard/opensearch-2pkg:apk/chainguard/opensearch-2-alertingpkg:apk/chainguard/opensearch-2-analysis-icupkg:apk/chainguard/opensearch-2-analysis-kuromojipkg:apk/chainguard/opensearch-2-analysis-noripkg:apk/chainguard/opensearch-2-analysis-phoneticpkg:apk/chainguard/opensearch-2-analysis-smartcnpkg:apk/chainguard/opensearch-2-analysis-stempelpkg:apk/chainguard/opensearch-2-analysis-ukrainianpkg:apk/chainguard/opensearch-2-anomaly-detectionpkg:apk/chainguard/opensearch-2-asynchronous-searchpkg:apk/chainguard/opensearch-2-cross-cluster-replicationpkg:apk/chainguard/opensearch-2-crypto-kmspkg:apk/chainguard/opensearch-2-custom-codecspkg:apk/chainguard/opensearch-2-discovery-azure-classicpkg:apk/chainguard/opensearch-2-discovery-ec2pkg:apk/chainguard/opensearch-2-discovery-gcepkg:apk/chainguard/opensearch-2-entrypoint-compatpkg:apk/chainguard/opensearch-2-geospatialpkg:apk/chainguard/opensearch-2-identity-shiropkg:apk/chainguard/opensearch-2-index-managementpkg:apk/chainguard/opensearch-2-ingest-attachmentpkg:apk/chainguard/opensearch-2-job-schedulerpkg:apk/chainguard/opensearch-2-jre-bcfipspkg:apk/chainguard/opensearch-2-jre-bcfips-alertingpkg:apk/chainguard/opensearch-2-jre-bcfips-analysis-icupkg:apk/chainguard/opensearch-2-jre-bcfips-analysis-kuromojipkg:apk/chainguard/opensearch-2-jre-bcfips-analysis-noripkg:apk/chainguard/opensearch-2-jre-bcfips-analysis-phoneticpkg:apk/chainguard/opensearch-2-jre-bcfips-analysis-smartcnpkg:apk/chainguard/opensearch-2-jre-bcfips-analysis-stempelpkg:apk/chainguard/opensearch-2-jre-bcfips-analysis-ukrainianpkg:apk/chainguard/opensearch-2-jre-bcfips-anomaly-detectionpkg:apk/chainguard/opensearch-2-jre-bcfips-asynchronous-searchpkg:apk/chainguard/opensearch-2-jre-bcfips-cross-cluster-replicationpkg:apk/chainguard/opensearch-2-jre-bcfips-crypto-kmspkg:apk/chainguard/opensearch-2-jre-bcfips-custom-codecspkg:apk/chainguard/opensearch-2-jre-bcfips-discovery-azure-classicpkg:apk/chainguard/opensearch-2-jre-bcfips-discovery-ec2pkg:apk/chainguard/opensearch-2-jre-bcfips-discovery-gcepkg:apk/chainguard/opensearch-2-jre-bcfips-geospatialpkg:apk/chainguard/opensearch-2-jre-bcfips-identity-shiropkg:apk/chainguard/opensearch-2-jre-bcfips-index-managementpkg:apk/chainguard/opensearch-2-jre-bcfips-ingest-attachmentpkg:apk/chainguard/opensearch-2-jre-bcfips-job-schedulerpkg:apk/chainguard/opensearch-2-jre-bcfips-k-nnpkg:apk/chainguard/opensearch-2-jre-bcfips-mapper-annotated-textpkg:apk/chainguard/opensearch-2-jre-bcfips-mapper-murmur3pkg:apk/chainguard/opensearch-2-jre-bcfips-mapper-sizepkg:apk/chainguard/opensearch-2-jre-bcfips-ml-commonspkg:apk/chainguard/opensearch-2-jre-bcfips-neural-searchpkg:apk/chainguard/opensearch-2-jre-bcfips-notificationspkg:apk/chainguard/opensearch-2-jre-bcfips-observabilitypkg:apk/chainguard/opensearch-2-jre-bcfips-performance-analyzerpkg:apk/chainguard/opensearch-2-jre-bcfips-reportingpkg:apk/chainguard/opensearch-2-jre-bcfips-repository-azurepkg:apk/chainguard/opensearch-2-jre-bcfips-repository-gcspkg:apk/chainguard/opensearch-2-jre-bcfips-repository-s3pkg:apk/chainguard/opensearch-2-jre-bcfips-securitypkg:apk/chainguard/opensearch-2-jre-bcfips-security-analyticspkg:apk/chainguard/opensearch-2-jre-bcfips-sqlpkg:apk/chainguard/opensearch-2-jre-bcfips-store-smbpkg:apk/chainguard/opensearch-2-jre-bcfips-telemetry-otelpkg:apk/chainguard/opensearch-2-jre-bcfips-transport-niopkg:apk/chainguard/opensearch-2-k-nnpkg:apk/chainguard/opensearch-2-mapper-annotated-textpkg:apk/chainguard/opensearch-2-mapper-murmur3pkg:apk/chainguard/opensearch-2-mapper-sizepkg:apk/chainguard/opensearch-2-ml-commonspkg:apk/chainguard/opensearch-2-neural-searchpkg:apk/chainguard/opensearch-2-notificationspkg:apk/chainguard/opensearch-2-observabilitypkg:apk/chainguard/opensearch-2-performance-analyzerpkg:apk/chainguard/opensearch-2-reportingpkg:apk/chainguard/opensearch-2-repository-azurepkg:apk/chainguard/opensearch-2-repository-gcspkg:apk/chainguard/opensearch-2-repository-s3pkg:apk/chainguard/opensearch-2-securitypkg:apk/chainguard/opensearch-2-security-analyticspkg:apk/chainguard/opensearch-2-sqlpkg:apk/chainguard/opensearch-2-store-smbpkg:apk/chainguard/opensearch-2-telemetry-otelpkg:apk/chainguard/opensearch-2-transport-niopkg:apk/chainguard/request-1277pkg:apk/chainguard/seleniumpkg:apk/chainguard/selenium-jre-bcfipspkg:apk/chainguard/selenium-serverpkg:apk/chainguard/selenium-server-compatpkg:apk/chainguard/selenium-server-jre-bcfipspkg:apk/chainguard/selenium-server-jre-bcfips-compatpkg:apk/chainguard/selenium-server-standalonepkg:apk/chainguard/selenium-server-standalone-jre-bcfipspkg:apk/chainguard/sonarqube-10pkg:apk/chainguard/sonarqube-10-docker-compatpkg:apk/chainguard/sonarqube-10-scriptspkg:apk/chainguard/spark-3.5pkg:apk/chainguard/spark-3.5-bitnami-compatpkg:apk/chainguard/spark-3.5-compatpkg:apk/chainguard/spark-3.5-minimal-openjdk-11pkg:apk/chainguard/spark-3.5-minimal-openjdk-17pkg:apk/chainguard/spark-3.5-minimal-openjdk-8pkg:apk/chainguard/spark-3.5-openjdk-11pkg:apk/chainguard/spark-3.5-openjdk-17pkg:apk/chainguard/spark-3.5-openjdk-8pkg:apk/chainguard/stargatepkg:apk/chainguard/tezpkg:apk/chainguard/wavefront-proxypkg:apk/chainguard/wavefront-proxy-compatpkg:apk/chainguard/wavefront-proxy-configpkg:apk/chainguard/wavefront-proxy-licensespkg:apk/chainguard/wavefront-proxy-oci-entrypointpkg:apk/wolfi/celeborn-0.5pkg:apk/wolfi/cloudwatch-exporterpkg:apk/wolfi/druidpkg:apk/wolfi/keycloakpkg:apk/wolfi/keycloak-bitnami-compatpkg:apk/wolfi/keycloak-compatpkg:apk/wolfi/keycloak-iamguarded-compatpkg:apk/wolfi/management-api-for-apache-cassandrapkg:apk/wolfi/management-api-for-apache-cassandra-compatpkg:apk/wolfi/neo4jpkg:apk/wolfi/neo4j-oci-entrypointpkg:apk/wolfi/opensearch-2pkg:apk/wolfi/opensearch-2-alertingpkg:apk/wolfi/opensearch-2-analysis-icupkg:apk/wolfi/opensearch-2-analysis-kuromojipkg:apk/wolfi/opensearch-2-analysis-noripkg:apk/wolfi/opensearch-2-analysis-phoneticpkg:apk/wolfi/opensearch-2-analysis-smartcnpkg:apk/wolfi/opensearch-2-analysis-stempelpkg:apk/wolfi/opensearch-2-analysis-ukrainianpkg:apk/wolfi/opensearch-2-anomaly-detectionpkg:apk/wolfi/opensearch-2-asynchronous-searchpkg:apk/wolfi/opensearch-2-cross-cluster-replicationpkg:apk/wolfi/opensearch-2-crypto-kmspkg:apk/wolfi/opensearch-2-custom-codecspkg:apk/wolfi/opensearch-2-discovery-azure-classicpkg:apk/wolfi/opensearch-2-discovery-ec2pkg:apk/wolfi/opensearch-2-discovery-gcepkg:apk/wolfi/opensearch-2-geospatialpkg:apk/wolfi/opensearch-2-identity-shiropkg:apk/wolfi/opensearch-2-index-managementpkg:apk/wolfi/opensearch-2-ingest-attachmentpkg:apk/wolfi/opensearch-2-job-schedulerpkg:apk/wolfi/opensearch-2-k-nnpkg:apk/wolfi/opensearch-2-mapper-annotated-textpkg:apk/wolfi/opensearch-2-mapper-murmur3pkg:apk/wolfi/opensearch-2-mapper-sizepkg:apk/wolfi/opensearch-2-ml-commonspkg:apk/wolfi/opensearch-2-neural-searchpkg:apk/wolfi/opensearch-2-notificationspkg:apk/wolfi/opensearch-2-observabilitypkg:apk/wolfi/opensearch-2-performance-analyzerpkg:apk/wolfi/opensearch-2-reportingpkg:apk/wolfi/opensearch-2-repository-azurepkg:apk/wolfi/opensearch-2-repository-gcspkg:apk/wolfi/opensearch-2-repository-s3pkg:apk/wolfi/opensearch-2-securitypkg:apk/wolfi/opensearch-2-security-analyticspkg:apk/wolfi/opensearch-2-sqlpkg:apk/wolfi/opensearch-2-store-smbpkg:apk/wolfi/opensearch-2-telemetry-otelpkg:apk/wolfi/opensearch-2-transport-niopkg:apk/wolfi/seleniumpkg:apk/wolfi/selenium-serverpkg:apk/wolfi/selenium-server-compatpkg:apk/wolfi/selenium-server-standalonepkg:apk/wolfi/sonarqube-10pkg:apk/wolfi/sonarqube-10-docker-compatpkg:apk/wolfi/sonarqube-10-scriptspkg:apk/wolfi/spark-3.5pkg:apk/wolfi/spark-3.5-bitnami-compatpkg:apk/wolfi/spark-3.5-compatpkg:apk/wolfi/spark-3.5-minimal-openjdk-11pkg:apk/wolfi/spark-3.5-minimal-openjdk-17pkg:apk/wolfi/spark-3.5-minimal-openjdk-8pkg:apk/wolfi/spark-3.5-openjdk-11pkg:apk/wolfi/spark-3.5-openjdk-17pkg:apk/wolfi/spark-3.5-openjdk-8pkg:apk/wolfi/tezpkg:apk/wolfi/wavefront-proxypkg:apk/wolfi/wavefront-proxy-compatpkg:apk/wolfi/wavefront-proxy-configpkg:apk/wolfi/wavefront-proxy-licensespkg:apk/wolfi/wavefront-proxy-oci-entrypointpkg:maven/io.netty/netty-codec-httppkg:rpm/opensuse/netty3&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/netty3&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/netty3&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/netty&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/netty&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/netty&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/netty-tcnative&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/netty-tcnative&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/netty3&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/netty3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/netty3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/netty3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/netty3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/netty3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5pkg:rpm/suse/netty3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6pkg:rpm/suse/netty3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/netty3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/netty3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/netty3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/netty3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/netty3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/netty&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5pkg:rpm/suse/netty&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6pkg:rpm/suse/netty-tcnative&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/netty-tcnative&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/netty-tcnative&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/netty-tcnative&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/netty-tcnative&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/netty-tcnative&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5pkg:rpm/suse/netty-tcnative&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6pkg:rpm/suse/netty-tcnative&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/netty-tcnative&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/netty-tcnative&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/netty-tcnative&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/netty-tcnative&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/netty-tcnative&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4
< 0.5.4-r26+ 252 more
- (no CPE)range: < 0.5.4-r26
- (no CPE)range: < 0.15.5-r1
- (no CPE)range: < 4.19.0.20240328-r0
- (no CPE)range: < 4.19.0.20240328-r0
- (no CPE)range: < 37.0.0-r8
- (no CPE)range: < 7.17.20-r0
- (no CPE)range: < 7.17.20-r0
- (no CPE)range: < 7.17.20-r0
- (no CPE)range: < 8.13.2-r1
- (no CPE)range: < 8.13.2-r1
- (no CPE)range: < 8.13.2-r1
- (no CPE)range: < 8.13.2-r1
- (no CPE)range: < 8.13.2-r1
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 24.0.2-r1
- (no CPE)range: < 24.0.2-r1
- (no CPE)range: < 24.0.3-r0
- (no CPE)range: < 24.0.2-r1
- (no CPE)range: < 24.0.3-r0
- (no CPE)range: < 24.0.3-r0
- (no CPE)range: < 24.0.3-r0
- (no CPE)range: < 24.0.3-r0
- (no CPE)range: < 24.0.2-r1
- (no CPE)range: < 24.0.3-r0
- (no CPE)range: < 0.1.80-r0
- (no CPE)range: < 0.1.74-r1
- (no CPE)range: < 0.1.74-r1
- (no CPE)range: < 0.1.80-r0
- (no CPE)range: < 5.20.0-r0
- (no CPE)range: < 5.20.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.14.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 0.1.89-r0
- (no CPE)range: < 4.19.0-r0
- (no CPE)range: < 4.19.0-r0
- (no CPE)range: < 4.19.0-r0
- (no CPE)range: < 4.19.0-r0
- (no CPE)range: < 4.19.0-r0
- (no CPE)range: < 4.19.0-r0
- (no CPE)range: < 4.19.0-r0
- (no CPE)range: < 4.19.0-r0
- (no CPE)range: < 25.3.0.104237-r0
- (no CPE)range: < 25.3.0.104237-r0
- (no CPE)range: < 25.3.0.104237-r0
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 1.0.79-r2
- (no CPE)range: < 0.10.4-r6
- (no CPE)range: < 13.4-r4
- (no CPE)range: < 13.4-r4
- (no CPE)range: < 13.4-r4
- (no CPE)range: < 13.4-r4
- (no CPE)range: < 13.4-r4
- (no CPE)range: < 0.5.4-r26
- (no CPE)range: < 0.15.5-r1
- (no CPE)range: < 37.0.0-r8
- (no CPE)range: < 24.0.2-r1
- (no CPE)range: < 24.0.2-r1
- (no CPE)range: < 24.0.2-r1
- (no CPE)range: < 24.0.2-r1
- (no CPE)range: < 0.1.80-r0
- (no CPE)range: < 0.1.80-r0
- (no CPE)range: < 5.20.0-r0
- (no CPE)range: < 5.20.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 2.13.0-r0
- (no CPE)range: < 4.19.0-r0
- (no CPE)range: < 4.19.0-r0
- (no CPE)range: < 4.19.0-r0
- (no CPE)range: < 4.19.0-r0
- (no CPE)range: < 25.3.0.104237-r0
- (no CPE)range: < 25.3.0.104237-r0
- (no CPE)range: < 25.3.0.104237-r0
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 3.5.1-r3
- (no CPE)range: < 0.10.4-r6
- (no CPE)range: < 13.4-r4
- (no CPE)range: < 13.4-r4
- (no CPE)range: < 13.4-r4
- (no CPE)range: < 13.4-r4
- (no CPE)range: < 13.4-r4
- (no CPE)range: < 4.1.108.Final
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-17.1
- (no CPE)range: < 4.1.108-150200.4.23.1
- (no CPE)range: < 4.1.108-150200.4.23.1
- (no CPE)range: < 4.1.114-1.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 3.10.6-150200.3.10.1
- (no CPE)range: < 4.1.108-150200.4.23.1
- (no CPE)range: < 4.1.108-150200.4.23.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
- (no CPE)range: < 2.0.65-150200.3.19.1
Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-5jpm-x58v-624vghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-29025ghsaADVISORY
- gist.github.com/vietj/f558b8ea81ec6505f1e9a6ca283c9ae3ghsax_refsource_MISCWEB
- github.com/netty/netty/commit/0d0c6ed782d13d423586ad0c71737b2c7d02058cghsax_refsource_MISCWEB
- github.com/netty/netty/security/advisories/GHSA-5jpm-x58v-624vghsax_refsource_CONFIRMWEB
- github.com/vietj/netty/tree/post-request-decoderghsaWEB
- lists.debian.org/debian-lts-announce/2024/06/msg00015.htmlghsaWEB
News mentions
0No linked articles in our index yet.