| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|
| CVE-2024-29025 | fixed | fixed | fixed | vulnerable (no DSA, postponed) | vulnerable (no DSA, postponed) | fixed | fixed | Netty is an asynchronous event-driven network application framework fo ... |
| CVE-2023-44487 | fixed | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | The HTTP/2 protocol allows a denial of service (server resource consum ... |
| CVE-2021-21409 | fixed | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | Netty is an open-source, asynchronous event-driven network application ... |
| CVE-2021-21295 | fixed | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | Netty is an open-source, asynchronous event-driven network application ... |
| CVE-2020-11612 | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | fixed | The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memo ... |
| CVE-2015-2156 | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | fixed | Netty before 3.9.8.Final, 3.10.x before 3.10.3.Final, 4.0.x before 4.0 ... |
| Bug | Description |
|---|
| CVE-2024-47535 | Netty is an asynchronous event-driven network application framework fo ... |
| CVE-2023-34462 | Netty is an asynchronous event-driven network application framework fo ... |
| CVE-2022-41915 | Netty project is an event-driven asynchronous network application fram ... |
| CVE-2022-41881 | Netty project is an event-driven asynchronous network application fram ... |
| CVE-2021-43797 | Netty is an asynchronous event-driven network application framework fo ... |
| CVE-2021-37137 | The Snappy frame decoder function doesn't restrict the chunk length wh ... |
| CVE-2021-37136 | The Bzip2 decompression decoder function doesn't allow setting size re ... |
| CVE-2021-21290 | Netty is an open-source, asynchronous event-driven network application ... |
| CVE-2020-7238 | Netty 4.1.43.Final allows HTTP Request Smuggling because it mishandles ... |
| CVE-2019-20445 | HttpObjectDecoder.java in Netty before 4.1.44 allows a Content-Length ... |
| CVE-2019-20444 | HttpObjectDecoder.java in Netty before 4.1.44 allows an HTTP header th ... |
| CVE-2019-16869 | Netty before 4.1.42.Final mishandles whitespace before the colon in HT ... |
| CVE-2016-4970 | handler/ssl/OpenSslEngine.java in Netty 4.0.x before 4.0.37.Final and ... |
| CVE-2014-3488 | The SslHandler in Netty before 3.9.2 allows remote attackers to cause ... |
| CVE-2014-0193 | WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7. ... |