First published: Tue Jun 29 2021(Updated: )
It was discovered that Netty incorrectly implements HTTP/2. An attacker could possibly use this issue to cause a denial of service. (CVE-2019-9512, CVE-2019-9514, CVE-2019-9515, CVE-2019-9518)
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/libnetty-java | <1:4.1.7-4ubuntu0.1+esm1 | 1:4.1.7-4ubuntu0.1+esm1 |
=18.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Contains the following vulnerabilities)
The vulnerability ID for the Netty vulnerabilities is CVE-2019-9512, CVE-2019-9514, CVE-2019-9515, CVE-2019-9518.
The severity of the Netty vulnerabilities is not mentioned in the provided information. Please refer to the official vulnerability reports for more details.
An attacker could possibly exploit the Netty vulnerabilities to cause a denial of service.
The libnetty-java package on Ubuntu 18.04 is affected by the Netty vulnerabilities.
To fix the Netty vulnerabilities, update the libnetty-java package to version 1:4.1.7-4ubuntu0.1+esm1 or later.