org.jboss.xnio:xnio-api@3.8.2.Final vulnerabilities

latest version

3.8.13.Final
first published

15 years ago
latest version published

2 months ago
licenses detected
- Apache-2.0
  [3.5.0.Final,)
package manager

View on Maven Repository

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.jboss.xnio:xnio-api package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
H Uncontrolled Resource Consumption org.jboss.xnio:xnio-api is a simplified low-level I/O layer which can be used anywhere you are using NIO. Affected versions of this package are vulnerable to Uncontrolled Resource Consumption due to the `NotifierState` function that can cause a Stack Overflow Exception when the chain of notifier states becomes problematically large, leading to a possible denial of service. How to fix Uncontrolled Resource Consumption? A fix was pushed into the `master` branch but not yet published.	[0,)
M Allocation of Resources Without Limits or Throttling org.jboss.xnio:xnio-api is a simplified low-level I/O layer which can be used anywhere you are using NIO. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the `notifyReadClosed` method by allowing an attacker to send flawed requests to a server, possibly causing log contention-related performance concerns or an unwanted disk fill-up. How to fix Allocation of Resources Without Limits or Throttling? Upgrade `org.jboss.xnio:xnio-api` to version 3.8.8 or higher.	[,3.8.8)

Uncontrolled Resource Consumption

org.jboss.xnio:xnio-api is a simplified low-level I/O layer which can be used anywhere you are using NIO.

Affected versions of this package are vulnerable to Uncontrolled Resource Consumption due to the NotifierState function that can cause a Stack Overflow Exception when the chain of notifier states becomes problematically large, leading to a possible denial of service.

How to fix Uncontrolled Resource Consumption?

A fix was pushed into the master branch but not yet published.

[0,)

Allocation of Resources Without Limits or Throttling

org.jboss.xnio:xnio-api is a simplified low-level I/O layer which can be used anywhere you are using NIO.

Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the notifyReadClosed method by allowing an attacker to send flawed requests to a server, possibly causing log contention-related performance concerns or an unwanted disk fill-up.

How to fix Allocation of Resources Without Limits or Throttling?

Upgrade org.jboss.xnio:xnio-api to version 3.8.8 or higher.

[,3.8.8)

Go back to all versions of this package

org.jboss.xnio:xnio-api@3.8.2.Final vulnerabilities

latest version

first published

latest version published

licenses detected

package manager

Direct Vulnerabilities