3 matches found
netty-incubator-codec-ohttp 安全特征问题漏洞
netty-incubator-codec-ohttp is an application developed by the Netty community. Versions prior to 0.0.21.Final of netty-incubator-codec-ohttp contain a security vulnerability. This vulnerability arises from returning a non-empty value when HKDF-expand fails, which may lead to the use of a key wit...
ansibleguy-webui 安全漏洞
ansibleguy-webui is a coding library by the individual developers at AnsibleGuy in Austria. A security vulnerability exists in ansibleguy-webui versions prior to 0.0.21, which stems from the presence of a cross-site scripting XSS vulnerability...
AZL-33612 CVE-2021-44716 affecting package local-path-provisioner for versions less than 0.0.21-16
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests...