Loading...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Undefined
Fix Version/s: 2.7.0.GA, 2.5.2.GA
Affects Version/s: None
Component/s: None
Labels:
None

Epic Link:
2.7.0 Productization
Blocked:
False
Blocked Reason:
None
Ready:
False
Bugzilla Bug:
RHBZ: 2241722
Target Release:

2.7.0.GA
Intelligence Requested:
Market:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

A flaw was found in SnappyInputStream in snappy-java, a data compression library in Java. This issue occurs when decompressing data with a too-large chunk size due to a missing upper bound check on chunk length. An unrecoverable fatal error can occur, resulting in a Denial of Service (DoS).
https://access.redhat.com/security/cve/cve-2023-43642

links to

RHSA-2024:132366 Red Hat AMQ Streams 2.7.0 release and security update

RHSA-2024:138376 Red Hat AMQ Streams 2.5.2 release and security update

mentioned in: Page Loading...; Page Loading...

Assignee:: Unassigned

Reporter:: Christopher Foley

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2024/04/22 4:08 PM

Updated:: 2024/09/10 2:19 PM

Resolved:: 2024/05/30 8:26 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates