3 matches found
SUSE CVE-2024-11407
There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...
OESA-2024-2573 grpc security update
gRPC is a modern open source high performance RPC framework that can run in any environment. It can efficiently connect services in and across data centers with pluggable support for load balancing, tracing, health checking and authentication. It is also applicable in last mile of distributed...
CVE-2024-11407
CVE-2024-11407 describes a denial-of-service in gRPC-C++ servers when transmit zero copy is enabled via GRPC_ARG_TCP_TX_ZEROCOPY_ENABLED, where data may become corrupted before network transmission. Connected advisories referencing grpc (ALAS2023-2025-1357, ALAS2ECS-2025-093, ALAS2023-2025-819, A...