VYPR

apk package

chainguard/knative-kafka-broker-fips-1.17-dispatcher-loom

pkg:apk/chainguard/knative-kafka-broker-fips-1.17-dispatcher-loom

Vulnerabilities (2)

  • CVE-2026-33871Mar 27, 2026
    affected < 1.17.3-r3fixed 1.17.3-r3

    Netty is an asynchronous, event-driven network application framework. In versions prior to 4.1.132.Final and 4.2.10.Final, a remote user can trigger a Denial of Service (DoS) against a Netty HTTP/2 server by sending a flood of `CONTINUATION` frames. The server's lack of a limit o

  • CVE-2026-33870Mar 27, 2026
    affected < 1.17.3-r2fixed 1.17.3-r2

    Netty is an asynchronous, event-driven network application framework. In versions prior to 4.1.132.Final and 4.2.10.Final, Netty incorrectly parses quoted strings in HTTP/1.1 chunked transfer encoding extension values, enabling request smuggling attacks. Versions 4.1.132.Final an