2020-01-29 21:01:34 +00:00
{
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org" ,
"ID" : "CVE-2019-20444" ,
"STATE" : "PUBLIC"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a" ,
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
} ,
"vendor_name" : "n/a"
}
]
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
"value" : "HttpObjectDecoder.java in Netty before 4.1.44 allows an HTTP header that lacks a colon, which might be interpreted as a separate header with an incorrect syntax, or might be interpreted as an \"invalid fold.\""
}
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "n/a"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"url" : "https://github.com/netty/netty/issues/9866" ,
"refsource" : "MISC" ,
"name" : "https://github.com/netty/netty/issues/9866"
} ,
{
"url" : "https://github.com/netty/netty/compare/netty-4.1.43.Final...netty-4.1.44.Final" ,
"refsource" : "MISC" ,
"name" : "https://github.com/netty/netty/compare/netty-4.1.43.Final...netty-4.1.44.Final"
2020-01-31 22:01:09 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[druid-commits] 20200131 [GitHub] [druid] ccaominh commented on a change in pull request #9300: Fix / suppress netty CVEs CVE-2019-20445 and CVE-2019-20444" ,
"url" : "https://lists.apache.org/thread.html/re45ee9256d3233c31d78e59ee59c7dc841c7fbd83d0769285b41e948@%3Ccommits.druid.apache.org%3E"
} ,
{
"refsource" : "MLIST" ,
"name" : "[druid-commits] 20200131 [GitHub] [druid] zachjsh opened a new pull request #9300: Fix / suppress netty CVEs CVE-2019-20445 and CVE-2019-20444" ,
"url" : "https://lists.apache.org/thread.html/r70b1ff22ee80e8101805b9a473116dd33265709007d2deb6f8c80bf2@%3Ccommits.druid.apache.org%3E"
2020-02-01 01:01:11 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[druid-commits] 20200131 [GitHub] [druid] gianm merged pull request #9300: Fix / suppress netty CVEs CVE-2019-20445 and CVE-2019-20444" ,
"url" : "https://lists.apache.org/thread.html/rff210a24f3a924829790e69eaefa84820902b7b31f17c3bf2def9114@%3Ccommits.druid.apache.org%3E"
2020-02-03 21:01:18 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[zookeeper-issues] 20200203 [jira] [Created] (ZOOKEEPER-3716) upgrade netty 4.1.42 to address CVE-2019-20444 CVE-2019-20445" ,
"url" : "https://lists.apache.org/thread.html/ra9fbfe7d4830ae675bf34c7c0f8c22fc8a4099f65706c1bc4f54c593@%3Cissues.zookeeper.apache.org%3E"
} ,
{
"refsource" : "MLIST" ,
"name" : "[zookeeper-dev] 20200203 [jira] [Created] (ZOOKEEPER-3716) upgrade netty 4.1.42 to address CVE-2019-20444 CVE-2019-20445" ,
"url" : "https://lists.apache.org/thread.html/r96e08f929234e8ba1ef4a93a0fd2870f535a1f9ab628fabc46115986@%3Cdev.zookeeper.apache.org%3E"
2020-02-04 00:01:09 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[zookeeper-issues] 20200203 [jira] [Assigned] (ZOOKEEPER-3716) upgrade netty 4.1.42 to address CVE-2019-20444 CVE-2019-20445" ,
"url" : "https://lists.apache.org/thread.html/r804895eedd72c9ec67898286eb185e04df852b0dd5fe53cf5b6138f9@%3Cissues.zookeeper.apache.org%3E"
2020-02-04 01:01:07 +00:00
} ,
{
"refsource" : "MISC" ,
"name" : "https://lists.apache.org/thread.html/rce71d33747010d32d31d90f5d737dae26291d96552f513a266c92fbb@%3Cnotifications.zookeeper.apache.org%3E" ,
"url" : "https://lists.apache.org/thread.html/rce71d33747010d32d31d90f5d737dae26291d96552f513a266c92fbb@%3Cnotifications.zookeeper.apache.org%3E"
} ,
{
"refsource" : "MISC" ,
"name" : "https://lists.apache.org/thread.html/rfb55f245b08d8a6ec0fb4dc159022227cd22de34c4419c2fbb18802b@%3Cnotifications.zookeeper.apache.org%3E" ,
"url" : "https://lists.apache.org/thread.html/rfb55f245b08d8a6ec0fb4dc159022227cd22de34c4419c2fbb18802b@%3Cnotifications.zookeeper.apache.org%3E"
} ,
{
"refsource" : "MLIST" ,
"name" : "[zookeeper-issues] 20200203 [jira] [Updated] (ZOOKEEPER-3716) upgrade netty 4.1.42 to address CVE-2019-20444 CVE-2019-20445" ,
"url" : "https://lists.apache.org/thread.html/ra2ace4bcb5cf487f72cbcbfa0f8cc08e755ec2b93d7e69f276148b08@%3Cissues.zookeeper.apache.org%3E"
2020-02-04 05:01:17 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[zookeeper-issues] 20200203 [jira] [Commented] (ZOOKEEPER-3716) upgrade netty 4.1.42 to address CVE-2019-20444 CVE-2019-20445" ,
"url" : "https://lists.apache.org/thread.html/r36fcf538b28f2029e8b4f6b9a772f3b107913a78f09b095c5b153a62@%3Cissues.zookeeper.apache.org%3E"
2020-02-04 11:01:05 +00:00
} ,
{
"refsource" : "MISC" ,
"name" : "https://lists.apache.org/thread.html/r91e0fa345c86c128b75a4a791b4b503b53173ff4c13049ac7129d319@%3Cnotifications.zookeeper.apache.org%3E" ,
"url" : "https://lists.apache.org/thread.html/r91e0fa345c86c128b75a4a791b4b503b53173ff4c13049ac7129d319@%3Cnotifications.zookeeper.apache.org%3E"
} ,
{
"refsource" : "MISC" ,
"name" : "https://lists.apache.org/thread.html/r310d2ce22304d5298ff87f10134f918c87919b452734f9841d95682d@%3Ccommits.zookeeper.apache.org%3E" ,
"url" : "https://lists.apache.org/thread.html/r310d2ce22304d5298ff87f10134f918c87919b452734f9841d95682d@%3Ccommits.zookeeper.apache.org%3E"
} ,
{
"refsource" : "MISC" ,
"name" : "https://lists.apache.org/thread.html/r9b20cdac704cf9a583400350e2d5b576fa8417c18ddb961201676c60@%3Ccommits.zookeeper.apache.org%3E" ,
"url" : "https://lists.apache.org/thread.html/r9b20cdac704cf9a583400350e2d5b576fa8417c18ddb961201676c60@%3Ccommits.zookeeper.apache.org%3E"
} ,
{
"refsource" : "MLIST" ,
"name" : "[zookeeper-issues] 20200204 [jira] [Resolved] (ZOOKEEPER-3716) upgrade netty 4.1.42 to address CVE-2019-20444 CVE-2019-20445" ,
"url" : "https://lists.apache.org/thread.html/r640eb9b3213058a963e18291f903fc1584e577f60035f941e32f760a@%3Cissues.zookeeper.apache.org%3E"
2020-02-04 12:01:28 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[zookeeper-dev] 20200204 Build failed in Jenkins: zookeeper-branch36-java8 #38" ,
"url" : "https://lists.apache.org/thread.html/r059b042bca47be53ff8a51fd04d95eb01bb683f1afa209db136e8cb7@%3Cdev.zookeeper.apache.org%3E"
} ,
{
"refsource" : "MLIST" ,
"name" : "[zookeeper-dev] 20200204 Build failed in Jenkins: zookeeper-branch36-java11 #39" ,
"url" : "https://lists.apache.org/thread.html/r489886fe72a98768eed665474cba13bad8d6fe0654f24987706636c5@%3Cdev.zookeeper.apache.org%3E"
2020-02-04 13:01:20 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[zookeeper-dev] 20200204 Build failed in Jenkins: zookeeper-master-maven-jdk11 #361" ,
"url" : "https://lists.apache.org/thread.html/r34912a9b1a5c269a77b8be94ef6fb6d1e9b3c69129719dc00f01cf0b@%3Cdev.zookeeper.apache.org%3E"
2020-02-09 16:01:08 +00:00
} ,
{
"refsource" : "MISC" ,
"name" : "https://lists.apache.org/thread.html/r0f5e72d5f69b4720dfe64fcbc2da9afae949ed1e9cbffa84bb7d92d7@%3Cnotifications.zookeeper.apache.org%3E" ,
"url" : "https://lists.apache.org/thread.html/r0f5e72d5f69b4720dfe64fcbc2da9afae949ed1e9cbffa84bb7d92d7@%3Cnotifications.zookeeper.apache.org%3E"
} ,
{
"refsource" : "MLIST" ,
"name" : "[zookeeper-issues] 20200209 [jira] [Updated] (ZOOKEEPER-3716) upgrade netty 4.1.42 to address CVE-2019-20444 CVE-2019-20445" ,
"url" : "https://lists.apache.org/thread.html/r1fcccf8bdb3531c28bc9aa605a6a1bea7e68cef6fc12e01faafb2fb5@%3Cissues.zookeeper.apache.org%3E"
} ,
{
"refsource" : "MISC" ,
"name" : "https://lists.apache.org/thread.html/r819aaeb9944bdcfca438dcc51f05650dc728daf64dfd7d774fc2499b@%3Ccommits.zookeeper.apache.org%3E" ,
"url" : "https://lists.apache.org/thread.html/r819aaeb9944bdcfca438dcc51f05650dc728daf64dfd7d774fc2499b@%3Ccommits.zookeeper.apache.org%3E"
} ,
{
"refsource" : "MISC" ,
"name" : "https://lists.apache.org/thread.html/rb84c57670ec48ef23f4d07973b7fa69f629b8e7fcfb48874362feb6f@%3Ccommits.zookeeper.apache.org%3E" ,
"url" : "https://lists.apache.org/thread.html/rb84c57670ec48ef23f4d07973b7fa69f629b8e7fcfb48874362feb6f@%3Ccommits.zookeeper.apache.org%3E"
} ,
{
"refsource" : "MLIST" ,
"name" : "[zookeeper-issues] 20200209 [jira] [Commented] (ZOOKEEPER-3716) upgrade netty 4.1.42 to address CVE-2019-20444 CVE-2019-20445" ,
"url" : "https://lists.apache.org/thread.html/r6945f3c346b7af89bbd3526a7c9b705b1e3569070ebcd0964bcedd7d@%3Cissues.zookeeper.apache.org%3E"
} ,
{
"refsource" : "MISC" ,
"name" : "https://lists.apache.org/thread.html/r4c675b2d0cc2a5e506b11ee10d60a378859ee340aca052e4c7ef4749@%3Cnotifications.zookeeper.apache.org%3E" ,
"url" : "https://lists.apache.org/thread.html/r4c675b2d0cc2a5e506b11ee10d60a378859ee340aca052e4c7ef4749@%3Cnotifications.zookeeper.apache.org%3E"
2020-02-13 19:01:11 +00:00
} ,
{
"refsource" : "REDHAT" ,
"name" : "RHSA-2020:0497" ,
"url" : "https://access.redhat.com/errata/RHSA-2020:0497"
2020-02-19 06:01:04 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[cassandra-commits] 20200218 [jira] [Created] (CASSANDRA-15590) Upgrade io.netty_netty-all dependency to fix security vulnerabilities" ,
"url" : "https://lists.apache.org/thread.html/r959474dcf7f88565ed89f6252ca5a274419006cb71348f14764b183d@%3Ccommits.cassandra.apache.org%3E"
2020-02-19 07:01:14 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[hadoop-common-issues] 20200219 [jira] [Updated] (HADOOP-16871) Upgrade Netty version to 4.1.45.Final to handle CVE-2019-20444," ,
"url" : "https://lists.apache.org/thread.html/rc7eb5634b71d284483e58665b22bf274a69bd184d9bd7ede52015d91@%3Ccommon-issues.hadoop.apache.org%3E"
} ,
{
"refsource" : "MLIST" ,
"name" : "[hadoop-common-issues] 20200219 [jira] [Updated] (HADOOP-16871) Upgrade Netty version to 4.1.45.Final to handle CVE-2019-20444,CVE-2019-16869" ,
"url" : "https://lists.apache.org/thread.html/r90030b0117490caed526e57271bf4d7f9b012091ac5083c895d16543@%3Ccommon-issues.hadoop.apache.org%3E"
2020-02-19 09:01:04 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[hadoop-common-issues] 20200219 [jira] [Assigned] (HADOOP-16871) Upgrade Netty version to 4.1.45.Final to handle CVE-2019-20444,CVE-2019-16869" ,
"url" : "https://lists.apache.org/thread.html/re0b78a3d0a4ba2cf9f4e14e1d05040bde9051d5c78071177186336c9@%3Ccommon-issues.hadoop.apache.org%3E"
2020-02-19 20:01:16 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[debian-lts-announce] 20200219 [SECURITY] [DLA 2109-1] netty security update" ,
"url" : "https://lists.debian.org/debian-lts-announce/2020/02/msg00017.html"
} ,
{
"refsource" : "MLIST" ,
"name" : "[debian-lts-announce] 20200219 [SECURITY] [DLA 2110-1] netty-3.9 security update" ,
"url" : "https://lists.debian.org/debian-lts-announce/2020/02/msg00018.html"
2020-02-25 02:01:07 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[hadoop-common-issues] 20200224 [jira] [Commented] (HADOOP-16871) Upgrade Netty version to 4.1.45.Final to handle CVE-2019-20444,CVE-2019-16869" ,
"url" : "https://lists.apache.org/thread.html/re78eaef7d01ad65c370df30e45c686fffff00b37f7bfd78b26a08762@%3Ccommon-issues.hadoop.apache.org%3E"
2020-02-25 11:01:07 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[hadoop-common-issues] 20200225 [jira] [Commented] (HADOOP-16871) Upgrade Netty version to 4.1.45.Final to handle CVE-2019-20444,CVE-2019-16869" ,
"url" : "https://lists.apache.org/thread.html/r0c3d49bfdbc62fd3915676433cc5899c5506d06da1c552ef1b7923a5@%3Ccommon-issues.hadoop.apache.org%3E"
2020-02-25 19:01:09 +00:00
} ,
{
"refsource" : "REDHAT" ,
"name" : "RHSA-2020:0601" ,
"url" : "https://access.redhat.com/errata/RHSA-2020:0601"
2020-02-26 21:01:07 +00:00
} ,
{
"refsource" : "REDHAT" ,
"name" : "RHSA-2020:0606" ,
"url" : "https://access.redhat.com/errata/RHSA-2020:0606"
} ,
{
"refsource" : "REDHAT" ,
"name" : "RHSA-2020:0605" ,
"url" : "https://access.redhat.com/errata/RHSA-2020:0605"
2020-03-03 19:01:17 +00:00
} ,
{
"refsource" : "REDHAT" ,
"name" : "RHSA-2020:0567" ,
"url" : "https://access.redhat.com/errata/RHSA-2020:0567"
2020-03-09 12:01:16 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[hadoop-common-issues] 20200309 [jira] [Updated] (HADOOP-16871) Upgrade Netty version to 4.1.45.Final to handle CVE-2019-20444,CVE-2019-16869" ,
"url" : "https://lists.apache.org/thread.html/rf2bf8e2eb0a03227f5bc100b544113f8cafea01e887bb068e8d1fa41@%3Ccommon-issues.hadoop.apache.org%3E"
2020-03-09 13:01:13 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[hadoop-common-issues] 20200309 [jira] [Commented] (HADOOP-16871) Upgrade Netty version to 4.1.45.Final to handle CVE-2019-20444,CVE-2019-16869" ,
"url" : "https://lists.apache.org/thread.html/rb3361f6c6a5f834ad3db5e998c352760d393c0891b8d3bea90baa836@%3Ccommon-issues.hadoop.apache.org%3E"
2020-03-09 16:01:18 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[hadoop-common-commits] 20200309 [hadoop] branch trunk updated: HADOOP-16871. Upgrade Netty version to 4.1.45.Final to handle CVE-2019-20444, CVE-2019-16869" ,
"url" : "https://lists.apache.org/thread.html/r86befa74c5cd1482c711134104aec339bf7ae879f2c4437d7ec477d4@%3Ccommon-commits.hadoop.apache.org%3E"
2020-03-10 03:01:11 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[hadoop-common-commits] 20200309 [hadoop] branch branch-3.2 updated: HADOOP-16871. Upgrade Netty version to 4.1.45.Final to handle CVE-2019-20444, CVE-2019-16869" ,
"url" : "https://lists.apache.org/thread.html/rdd5d243a5f8ed8b83c0104e321aa420e5e98792a95749e3c9a54c0b9@%3Ccommon-commits.hadoop.apache.org%3E"
} ,
{
"refsource" : "MLIST" ,
"name" : "[hadoop-common-commits] 20200309 [hadoop] branch branch-3.1 updated: HADOOP-16871. Upgrade Netty version to 4.1.45.Final to handle CVE-2019-20444, CVE-2019-16869" ,
"url" : "https://lists.apache.org/thread.html/rcb2c59428f34d4757702f9ae739a8795bda7bea97b857e708a9c62c6@%3Ccommon-commits.hadoop.apache.org%3E"
2020-03-10 12:01:30 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[hadoop-common-issues] 20200310 [jira] [Commented] (HADOOP-16871) Upgrade Netty version to 4.1.45.Final to handle CVE-2019-20444,CVE-2019-16869" ,
"url" : "https://lists.apache.org/thread.html/r8402d67fdfe9cf169f859d52a7670b28a08eff31e54b522cc1432532@%3Ccommon-issues.hadoop.apache.org%3E"
2020-03-12 20:01:20 +00:00
} ,
{
"refsource" : "REDHAT" ,
"name" : "RHSA-2020:0806" ,
"url" : "https://access.redhat.com/errata/RHSA-2020:0806"
} ,
{
"refsource" : "REDHAT" ,
"name" : "RHSA-2020:0811" ,
"url" : "https://access.redhat.com/errata/RHSA-2020:0811"
} ,
{
"refsource" : "REDHAT" ,
"name" : "RHSA-2020:0804" ,
"url" : "https://access.redhat.com/errata/RHSA-2020:0804"
} ,
{
"refsource" : "REDHAT" ,
"name" : "RHSA-2020:0805" ,
"url" : "https://access.redhat.com/errata/RHSA-2020:0805"
2020-04-08 18:01:19 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[geode-dev] 20200408 Proposal to bring GEODE-7969 to support/1.12" ,
"url" : "https://lists.apache.org/thread.html/r205937c85817a911b0c72655c2377e7a2c9322d6ef6ce1b118d34d8d@%3Cdev.geode.apache.org%3E"
} ,
{
"refsource" : "MLIST" ,
"name" : "[geode-dev] 20200408 Re: Proposal to bring GEODE-7969 to support/1.12" ,
"url" : "https://lists.apache.org/thread.html/ra1a71b576a45426af5ee65255be9596ff3181a342f4ba73b800db78f@%3Cdev.geode.apache.org%3E"
2020-06-04 17:01:20 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[cassandra-commits] 20200604 [jira] [Created] (CASSANDRA-15856) Security vulnerabilities with dependency jars of Cassandra 3.11.6" ,
"url" : "https://lists.apache.org/thread.html/r4d3f1d3e333d9c2b2f6e6ae8ed8750d4de03410ac294bcd12c7eefa3@%3Ccommits.cassandra.apache.org%3E"
2020-07-29 12:01:25 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[bookkeeper-issues] 20200729 [GitHub] [bookkeeper] padma81 opened a new issue #2387: Security vulnerabilities in the apache/bookkeeper-4.9.2 image" ,
"url" : "https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0@%3Cissues.bookkeeper.apache.org%3E"
2020-09-04 21:01:27 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[debian-lts-announce] 20200904 [SECURITY] [DLA 2365-1] netty-3.9 security update" ,
"url" : "https://lists.debian.org/debian-lts-announce/2020/09/msg00004.html"
} ,
{
"refsource" : "MLIST" ,
"name" : "[debian-lts-announce] 20200904 [SECURITY] [DLA 2364-1] netty security update" ,
"url" : "https://lists.debian.org/debian-lts-announce/2020/09/msg00003.html"
2020-09-10 19:01:47 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[flink-issues] 20200910 [jira] [Created] (FLINK-19195) question on security vulnerabilities in flink" ,
"url" : "https://lists.apache.org/thread.html/raaac04b7567c554786132144bea3dcb72568edd410c1e6f0101742e7@%3Cissues.flink.apache.org%3E"
} ,
{
"refsource" : "MLIST" ,
"name" : "[flink-dev] 20200910 [jira] [Created] (FLINK-19195) question on security vulnerabilities in flink" ,
"url" : "https://lists.apache.org/thread.html/rf5b2dfb7401666a19915f8eaef3ba9f5c3386e2066fcd2ae66e16a2f@%3Cdev.flink.apache.org%3E"
2020-09-25 00:01:37 +00:00
} ,
{
"refsource" : "UBUNTU" ,
"name" : "USN-4532-1" ,
"url" : "https://usn.ubuntu.com/4532-1/"
2020-09-25 20:02:07 +00:00
} ,
{
"refsource" : "FEDORA" ,
"name" : "FEDORA-2020-66b5f85ccc" ,
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TS6VX7OMXPDJIU5LRGUAHRK6MENAVJ46/"
2020-11-20 12:01:36 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[camel-commits] 20201120 [camel] branch camel-2.25.x updated: Updating Netty to 4.1.48.Final to fix some CVEs (e.g. CVE-2019-16869, CVE-2019-20444)" ,
"url" : "https://lists.apache.org/thread.html/r0aa8b28e76ec01c697b15e161e6797e88fc8d406ed762e253401106e@%3Ccommits.camel.apache.org%3E"
2020-12-16 06:01:41 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[pulsar-commits] 20201215 [GitHub] [pulsar] yanshuchong opened a new issue #8967: CVSS issue list" ,
"url" : "https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@%3Ccommits.pulsar.apache.org%3E"
2021-01-26 18:01:45 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[pulsar-commits] 20210120 [GitHub] [pulsar] fmiguelez opened a new issue #9249: Upgrade Netty dependency in broker to solve vulnerabilities: CVE-2019-16869, CVE-2020-11612, CVE-2019-20445, CVE-2019-20444" ,
"url" : "https://lists.apache.org/thread.html/r832724df393a7ef25ca4c7c2eb83ad2d6c21c74569acda5233f9f1ec@%3Ccommits.pulsar.apache.org%3E"
2021-01-26 20:02:23 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[pulsar-commits] 20210121 [GitHub] [pulsar] hpvd commented on issue #9249: Upgrade Netty dependency in broker to solve vulnerabilities: CVE-2019-16869, CVE-2020-11612, CVE-2019-20445, CVE-2019-20444" ,
"url" : "https://lists.apache.org/thread.html/r7790b9d99696d9eddce8a8c96f13bb68460984294ea6fea3800143e4@%3Ccommits.pulsar.apache.org%3E"
2021-01-26 20:03:39 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[pulsar-commits] 20210122 [GitHub] [pulsar] hpvd commented on issue #9249: Upgrade Netty dependency in broker to solve vulnerabilities: CVE-2019-16869, CVE-2020-11612, CVE-2019-20445, CVE-2019-20444" ,
"url" : "https://lists.apache.org/thread.html/rdb69125652311d0c41f6066ff44072a3642cf33a4b5e3c4f9c1ec9c2@%3Ccommits.pulsar.apache.org%3E"
2021-04-06 12:00:46 +00:00
} ,
{
"refsource" : "DEBIAN" ,
"name" : "DSA-4885" ,
"url" : "https://www.debian.org/security/2021/dsa-4885"
2021-04-26 10:00:50 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[flink-issues] 20210426 [jira] [Commented] (FLINK-22441) In Flink v1.11.3 contains netty(version:3.10.6) netty(version:4.1.60) . There are many vulnerabilities, like CVE-2021-21409 etc. please confirm these version and fix. thx" ,
"url" : "https://lists.apache.org/thread.html/rd8f72411fb75b98d366400ae789966373b5c3eb3f511e717caf3e49e@%3Cissues.flink.apache.org%3E"
2021-08-24 11:00:57 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[spark-issues] 20210824 [jira] [Created] (SPARK-36572) Upgrade version of io.netty to 4.1.44.Final to solve CVE-2019-20444 and CVE-2019-20445" ,
"url" : "https://lists.apache.org/thread.html/r2f2989b7815d809ff3fda8ce330f553e5f133505afd04ffbc135f35f@%3Cissues.spark.apache.org%3E"
2020-01-29 21:01:34 +00:00
}
]
}
}
