VYPR

rpm package

opensuse/python-grpcio&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/python-grpcio&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2024-11407Nov 26, 2024
    affected < 1.69.0-2.1fixed 1.69.0-2.1

    There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPC_ARG_TCP_TX_ZEROCOPY_ENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmi

  • CVE-2024-7246Aug 6, 2024
    affected < 1.69.0-2.1fixed 1.69.0-2.1

    It's possible for a gRPC client communicating with a HTTP/2 proxy to poison the HPACK table between the proxy and the backend such that other clients see failed requests. It's also possible to use this vulnerability to leak other clients HTTP header keys, but not values. This oc