Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2018-1114

Опубликовано: 11 сент. 2018
Источник: debian

Описание

It was found that URLResource.getLastModified() in Undertow closes the file descriptors only when they are finalized which can cause file descriptors to exhaust. This leads to a file handler leak.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
undertowfixed1.4.25-1package

Примечания

  • https://issues.jboss.org/browse/UNDERTOW-1338

  • https://github.com/undertow-io/undertow/commit/882d5884f2614944a0c2ae69bafd9d13bfc5b64a

  • https://bugs.openjdk.java.net/browse/JDK-6956385

Связанные уязвимости

ubuntu логотип

CVE-2018-1114

CVSS3: 6.5
ubuntu
больше 7 лет назад

It was found that URLResource.getLastModified() in Undertow closes the file descriptors only when they are finalized which can cause file descriptors to exhaust. This leads to a file handler leak.

redhat логотип

CVE-2018-1114

CVSS3: 6.5
redhat
почти 8 лет назад

It was found that URLResource.getLastModified() in Undertow closes the file descriptors only when they are finalized which can cause file descriptors to exhaust. This leads to a file handler leak.

nvd логотип

CVE-2018-1114

CVSS3: 6.5
nvd
больше 7 лет назад

It was found that URLResource.getLastModified() in Undertow closes the file descriptors only when they are finalized which can cause file descriptors to exhaust. This leads to a file handler leak.

github логотип

GHSA-gjjx-gqm4-wcgm

CVSS3: 6.5
github
больше 3 лет назад

Uncontrolled Resource Consumption in Undertow