Описание
In Apache MINA, a specifically crafted, malformed HTTP request may cause the HTTP Header decoder to loop indefinitely. The decoder assumed that the HTTP Header begins at the beginning of the buffer and loops if there is more data than expected. Please update MINA to 2.1.5 or greater.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat BPM Suite 6 | mina-core | Out of support scope | ||
| Red Hat Fuse 7 | mina-core | Not affected | ||
| Red Hat Integration Camel K 1 | mina-core | Not affected | ||
| Red Hat Integration Camel Quarkus 1 | mina-core | Not affected | ||
| Red Hat JBoss A-MQ 6 | mina-core | Out of support scope | ||
| Red Hat JBoss BRMS 5 | mina-core | Out of support scope | ||
| Red Hat JBoss BRMS 6 | mina-core | Out of support scope | ||
| Red Hat JBoss Data Virtualization 6 | mina-core | Out of support scope | ||
| Red Hat JBoss Enterprise Application Platform 6 | mina-core | Out of support scope | ||
| Red Hat JBoss Fuse 6 | mina-core | Out of support scope |
Показывать по
Дополнительная информация
Статус:
6.5 Medium
CVSS3
Связанные уязвимости
In Apache MINA, a specifically crafted, malformed HTTP request may cause the HTTP Header decoder to loop indefinitely. The decoder assumed that the HTTP Header begins at the beginning of the buffer and loops if there is more data than expected. Please update MINA to 2.1.5 or greater.
In Apache MINA, a specifically crafted, malformed HTTP request may cause the HTTP Header decoder to loop indefinitely. The decoder assumed that the HTTP Header begins at the beginning of the buffer and loops if there is more data than expected. Please update MINA to 2.1.5 or greater.
In Apache MINA, a specifically crafted, malformed HTTP request may cau ...
6.5 Medium
CVSS3