PT-2021-14396 · Unknown +2 · Blaze-Core +5

Name of the Vulnerable Software and Affected Versions: http4s versions prior to 0.21.17 http4s versions prior to 0.22.0-M2 http4s versions prior to 1.0.0-M14 Description: The issue is related to the blaze-core library, which accepts connections unboundedly on its selector pool. This can lead to a...

Http4s Blaze Resource Management Error Vulnerability

Http4s Blaze is a java-based NIO codebase for processing network streams from the Http4s organization. A security vulnerability exists in Http4s Blaze that originates from accepting connections without restriction on a selector pool. The following products and versions are affected: Http4s before...