Lucene search
RedHatRHSA-2024:6657HistorySep 12, 2024 - 2:59 p.m.
(RHSA-2024:6657) Moderate: Migration Toolkit for Runtimes security, bug fix and enhancement update
2024-09-1214:59:50
access.redhat.com
4
migration toolkit
runtimes
security update
bug fix
enhancement
netty-codec-http
allocation of resources without limits
cve-2024-29025
unix
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
6.9
Confidence
Low
Migration Toolkit for Runtimes 1.2.7 ZIP artifacts
Security Fix(es):
- netty-codec-http: Allocation of Resources Without Limits or Throttling (CVE-2024-29025)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Related
ubuntucve
ubuntucve
CVE-2024-29025
2024-03-25 00:00:00
ibm
ibm
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:2313-1)
2024-07-09 00:00:00
openSUSE: Security Advisory for netty3 (SUSE-SU-2024:2313-1)
2024-07-10 00:00:00
openSUSE: Security Advisory for netty, netty (SUSE-SU-2024:1079-2)
2024-08-20 00:00:00
cvelist
cvelist
CVE-2024-29025 Netty HttpPostRequestDecoder can OOM
2024-03-25 20:09:35
osv
osv
Netty's HttpPostRequestDecoder can OOM
2024-03-25 19:40:50
CGA-7p98-j4rx-8p2r
2024-06-06 12:25:00
CGA-wqhj-xxjq-qrjf
2024-06-06 12:29:49
nessus
nessus
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : netty, netty-tcnative (SUSE-SU-2024:1079-1)
2024-04-03 00:00:00
Debian dla-3834 : libnetty-java - security update
2024-06-22 00:00:00
RHEL 6 : netty-codec-http (Unpatched Vulnerability)
2024-06-22 00:00:00
nvd
nvd
CVE-2024-29025
2024-03-25 20:15:08
veracode
veracode
Denial Of Service (DoS)
2024-03-28 03:09:13
debiancve
debiancve
CVE-2024-29025
2024-03-25 20:15:08
vulnrichment
vulnrichment
CVE-2024-29025 Netty HttpPostRequestDecoder can OOM
2024-03-25 20:09:35
github
github
Netty's HttpPostRequestDecoder can OOM
2024-03-25 19:40:50
wolfi
wolfi
CVE-2024-29025 vulnerabilities
2024-09-18 21:11:55
cgr
cgr
CVE-2024-29025 vulnerabilities
2024-05-19 03:07:16
redhatcve
redhatcve
CVE-2024-29025
2024-04-03 12:18:09
cve
cve
CVE-2024-29025
2024-03-25 20:15:08
redhat
redhat
(RHSA-2024:2705) Moderate: Red Hat build of Quarkus 3.2.12 release and security update
2024-05-09 11:54:42
(RHSA-2024:2106) Moderate: Red Hat build of Quarkus 3.8.4 release
2024-05-07 16:19:27
(RHSA-2024:4460) Important: Red Hat Data Grid 8.5.0 security update
2024-07-10 15:09:23
redos
redos
ROS-20240514-04
2024-05-14 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2024
2024-07-16 00:00:00
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
6.9
Confidence
Low
Related for RHSA-2024:6657