Описание
A flaw was found in XNIO. The XNIO NotifierState that can cause a Stack Overflow Exception when the chain of notifier states becomes problematically large can lead to uncontrolled resource management and a possible denial of service (DoS).
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| jboss-xnio | unfixed | package | ||
| jboss-xnio | ignored | trixie | package | |
| jboss-xnio | ignored | bookworm | package | |
| jboss-xnio | no-dsa | bullseye | package | |
| jboss-xnio | no-dsa | buster | package |
Примечания
https://bugzilla.redhat.com/show_bug.cgi?id=2241822
https://issues.redhat.com/browse/XNIO-423
https://github.com/xnio/xnio/commit/ffabdcdda508ef87aeadad5ca3f854e274d60ec1 (3.8.14.Final)
https://github.com/xnio/xnio/pull/324
Связанные уязвимости
A flaw was found in XNIO. The XNIO NotifierState that can cause a Stack Overflow Exception when the chain of notifier states becomes problematically large can lead to uncontrolled resource management and a possible denial of service (DoS).
A flaw was found in XNIO. The XNIO NotifierState that can cause a Stack Overflow Exception when the chain of notifier states becomes problematically large can lead to uncontrolled resource management and a possible denial of service (DoS).
A flaw was found in XNIO. The XNIO NotifierState that can cause a Stack Overflow Exception when the chain of notifier states becomes problematically large can lead to uncontrolled resource management and a possible denial of service (DoS).
Уязвимость библиотеки для обеспечения неблокирующих операций ввода-вывода (I/O) XNIO, связанная с неконтролируемым потребление ресурсов, позволяющая нарушителю вызвать отказ в обслуживании