VYPR

Maven package

org.jboss.narayana.rts/lra-coordinator-jar

pkg:maven/org.jboss.narayana.rts/lra-coordinator-jar

Vulnerabilities (1)

  • CVE-2024-8447MedJan 2, 2025
    affected < 7.1.0.Finalfixed 7.1.0.Final

    A security issue was discovered in the LRA Coordinator component of Narayana. When Cancel is called in LRA, an execution time of approximately 2 seconds occurs. If Join is called with the same LRA ID within that timeframe, the application may crash or hang indefinitely, leading t