9 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-36124
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iq80 Snappy is a compression/decompression library. When uncompressing certain data, Snappy tries to read outside the bounds of the given byte arrays. Because...
Security Bulletin: The B2B API of IBM Sterling B2B Integrator is Vulnerable to Denial of Service due to Snappy (CVE-2024-36124)
Summary IBM Sterling B2B Integrator has addressed the denial of service vulnerablity from Snappy Vulnerability Details CVEID:CVE-2024-36124 DESCRIPTION: Snappy is vulnerable to a denial of service, caused by an out-of-bounds read flaw when uncompressing data. By sending a specially crafted reques...
ai.chronon:online_2.11 (>=0.0.25 <=revert-391-thread-0.0.24), ai.chronon:service_2.11 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91) +2845 more potentially affected by CVE-2024-36124 via org.iq80.snappy:snappy (>=0.1 <=0.4)
org.iq80.snappy:snappy MAVEN version =0.1, =0.0.25, =0.0.86, =0.0.1, =0.0.1, =0.2.7, =1.0.1, =1.1.0, =1.7.0, =1.7.0, =1.0.0, =0.0.12, =1.0.0, =1.0.0, =1.0.0, =1.4.0 and more Source cves: CVE-2024-36124 Source advisory: OSV:GHSA-8WH2-6QHJ-H7J9...
CVE-2024-36124
iq80 Snappy is a compression/decompression library. When uncompressing certain data, Snappy tries to read outside the bounds of the given byte arrays. Because Snappy uses the JDK class sun.misc.Unsafe to speed up memory access, no additional bounds checks are performed and this has similar securi...
CVE-2024-36124 vulnerabilities
Vulnerabilities for packages: apache-nifi...
CVE-2024-36124 vulnerabilities
Vulnerabilities for packages: apache-nifi...
CVE-2024-36124
iq80 Snappy is a compression/decompression library. When uncompressing certain data, Snappy tries to read outside the bounds of the given byte arrays. Because Snappy uses the JDK class sun.misc.Unsafe to speed up memory access, no additional bounds checks are performed and this has similar securi...
CVE-2024-36124 iq80 Snappy has an out-of-bounds read when uncompressing data, leading to JVM crash
iq80 Snappy is a compression/decompression library. When uncompressing certain data, Snappy tries to read outside the bounds of the given byte arrays. Because Snappy uses the JDK class sun.misc.Unsafe to speed up memory access, no additional bounds checks are performed and this has similar securi...
CVE-2024-36124 iq80 Snappy has an out-of-bounds read when uncompressing data, leading to JVM crash
iq80 Snappy is a compression/decompression library. When uncompressing certain data, Snappy tries to read outside the bounds of the given byte arrays. Because Snappy uses the JDK class sun.misc.Unsafe to speed up memory access, no additional bounds checks are performed and this has similar securi...