Linux Distros Unpatched Vulnerability : CVE-2024-47609

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Tonic is a native gRPC client & server implementation with async/await support. When using tonic::transport::Server there is a remote DoS attack that can cause...

Fedora 41 : rust-hyper-rustls / rust-reqwest / rust-rustls-native-certs / etc (2024-347164df1c)

The remote Fedora 41 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-347164df1c advisory. - Update the hyper-rustls crate to version 0.27.3. - Update the reqwest crate to version 0.12.8. - Update the rustls-native-certs crate to version 0.8.0 and...

SUSE CVE-2024-47609

Tonic is a native gRPC client & server implementation with async/await support. When using tonic::transport::Server there is a remote DoS attack that can cause the server to exit cleanly on accepting a TCP/TLS stream. This can be triggered by causing the accept call to error out with errors that...

Fedora: Security Advisory (FEDORA-2024-bf524bf5c0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 40 Update: rust-tonic-build-0.12.3-1.fc40

Codegen module of tonic gRPC implementation...

[SECURITY] Fedora 40 Update: rust-tonic-types-0.12.3-1.fc40

A collection of useful protobuf types that can be used with tonic...

[SECURITY] Fedora 39 Update: rust-tonic-build-0.12.3-1.fc39

Codegen module of tonic gRPC implementation...

[SECURITY] Fedora 39 Update: rust-tonic-types-0.12.3-1.fc39

A collection of useful protobuf types that can be used with tonic...

Fedora 39 : rust-hyper-rustls / rust-reqwest / rust-rustls-native-certs / etc (2024-ff98facbc6)

The remote Fedora 39 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-ff98facbc6 advisory. - Update the hyper-rustls crate to version 0.27.3. - Update the reqwest crate to version 0.12.8. - Update the rustls-native-certs crate to version 0.8.0 and...

[SECURITY] Fedora 41 Update: rust-tonic-types-0.12.3-1.fc41

A collection of useful protobuf types that can be used with tonic...

[SECURITY] Fedora 41 Update: rust-tonic-0.12.3-1.fc41

A gRPC over HTTP/2 implementation focused on high performance, interoperability, and flexibility...

[SECURITY] Fedora 41 Update: rust-tonic-build-0.12.3-1.fc41

Codegen module of tonic gRPC implementation...

Tonic has remotely exploitable denial of service vulnerability

Impact When using tonic::transport::Server there is a remote DoS attack that can cause the server to exit cleanly on accepting a tcp/tls stream. This can be triggered via causing the accept call to error out with errors there were not covered correctly causing the accept loop to exit. More...

GHSA-4JWC-W2HC-78QV Tonic has remotely exploitable denial of service vulnerability

Impact When using tonic::transport::Server there is a remote DoS attack that can cause the server to exit cleanly on accepting a tcp/tls stream. This can be triggered via causing the accept call to error out with errors there were not covered correctly causing the accept loop to exit. More...

CVE-2024-47609

A flaw was found in the hyperium/tonic package. In certain conditions, it may be possible for a remote attacker to cause the application to terminate upon accepting a TCP/TLS stream, which may lead to a denial of service...

CVE-2024-47609

Tonic is a native gRPC client & server implementation with async/await support. When using tonic::transport::Server there is a remote DoS attack that can cause the server to exit cleanly on accepting a TCP/TLS stream. This can be triggered by causing the accept call to error out with errors that...

UBUNTU-CVE-2024-47609

Tonic is a native gRPC client & server implementation with async/await support. When using tonic::transport::Server there is a remote DoS attack that can cause the server to exit cleanly on accepting a TCP/TLS stream. This can be triggered by causing the accept call to error out with errors that...

CVE-2024-47609 Remotely exploitable DoS in Tonic `<=v0.12.2`

Tonic is a native gRPC client & server implementation with async/await support. When using tonic::transport::Server there is a remote DoS attack that can cause the server to exit cleanly on accepting a TCP/TLS stream. This can be triggered by causing the accept call to error out with errors that...

CVE-2024-47609 Remotely exploitable DoS in Tonic `<=v0.12.2`

Tonic is a native gRPC client & server implementation with async/await support. When using tonic::transport::Server there is a remote DoS attack that can cause the server to exit cleanly on accepting a TCP/TLS stream. This can be triggered by causing the accept call to error out with errors that...

CVE-2024-47609

CVE-2024-47609 affects the Tonic library (Rust gRPC) in versions prior to 0.12.3. The vulnerability is a remote DoS in the server side when using tonic::transport::Server: the accept loop can exit cleanly if the accept call errors in a way not properly covered, allowing a attacker-controlled TCP/...