- Vulnerability/
- USN-4866-1
USN-4866-1: Netty vulnerabilities
First published: Tue Jun 29 2021(Updated: )
It was discovered that Netty incorrectly implements HTTP/2. An attacker could possibly use this issue to cause a denial of service. (CVE-2019-9512, CVE-2019-9514, CVE-2019-9515, CVE-2019-9518)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/libnetty-java | <1:4.1.7-4ubuntu0.1+esm1 | 1:4.1.7-4ubuntu0.1+esm1 |
| =18.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What is the vulnerability ID for the Netty vulnerabilities?
The vulnerability ID for the Netty vulnerabilities is CVE-2019-9512, CVE-2019-9514, CVE-2019-9515, CVE-2019-9518.
What is the severity of the Netty vulnerabilities?
The severity of the Netty vulnerabilities is not mentioned in the provided information. Please refer to the official vulnerability reports for more details.
How can an attacker exploit the Netty vulnerabilities?
An attacker could possibly exploit the Netty vulnerabilities to cause a denial of service.
What software is affected by the Netty vulnerabilities?
The libnetty-java package on Ubuntu 18.04 is affected by the Netty vulnerabilities.
How can I fix the Netty vulnerabilities?
To fix the Netty vulnerabilities, update the libnetty-java package to version 1:4.1.7-4ubuntu0.1+esm1 or later.
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/usn
- source/Ubuntu
- anchor-related/USN-4308-1
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/18.04