all InfoSec News logo
all InfoSec News - Your InfoSec news aggregator
Log in Sign up
all InfoSec News

USN-6049-1: Netty vulnerabilities

Add to bookmarks
April 28, 2023, 4:02 p.m. |

Ubuntu security notices ubuntu.com

It was discovered that Netty's Zlib decoders did not limit memory
allocations. A remote attacker could possibly use this issue to cause
Netty to exhaust memory via malicious input, leading to a denial of
service. This issue only affected Ubuntu 16.04 ESM and Ubuntu 20.04 ESM.
(CVE-2020-11612)

It was discovered that Netty created temporary files with excessive
permissions. A local attacker could possibly use this issue to expose
sensitive information. This issue only affected Ubuntu 16.04 ESM, Ubuntu …

cve denial of service files headers information input issue length local malicious memory permissions sensitive information service ubuntu usn vulnerabilities zlib

Visit resource

More from ubuntu.com / Ubuntu security notices

USN-6879-1: Virtuoso Open-Source Edition vulnerabilities 23 hours ago | ubuntu.com
attacker crash cve denial of service +6
USN-6866-2: Linux kernel (Azure) vulnerabilities 1 day ago | ubuntu.com
ata attacker azure crash +19
USN-6865-2: Linux kernel (Azure) vulnerabilities 1 day, 2 hours ago | ubuntu.com
ata attacker azure crash +19
USN-6870-2: Linux kernel (AWS) vulnerabilities 1 day, 2 hours ago | ubuntu.com
accelerator access analytics attacker +23
USN-6873-2: Linux kernel (StarFive) vulnerabilities 1 day, 2 hours ago | ubuntu.com
accelerator access analytics attacker +22
USN-6864-2: Linux kernel vulnerabilities 1 day, 3 hours ago | ubuntu.com
accelerator access analytics attacker +22
USN-6872-2: Linux kernel vulnerabilities 1 day, 3 hours ago | ubuntu.com
attacker compromise cve cve-2024 +14
USN-6876-1: Kopano Core vulnerabilities 1 day, 3 hours ago | ubuntu.com
access attacker authentication bypass +13
USN-6878-1: Linux kernel (Oracle) vulnerabilities 1 day, 4 hours ago | ubuntu.com
attacker broadcom conditions cve +20

Jobs in InfoSec / Cybersecurity

Find Talent

Microsoft Active Directory Engineer - TS/SCI with Polygraph

@ General Dynamics Information Technology | USA VA Chantilly - 14700 Lee Rd (VAS100)
View on infosec-jobs.com

GSOC Analyst & Team Lead

@ Western Digital | Colorado Springs, CO, United States
View on infosec-jobs.com

FAIT Manager - IT Risk Assessment - Dublin

@ EY | Dublin 2, IE
View on infosec-jobs.com

FAIT Senior Manager - IT Risk Assessment - Dublin

@ EY | Dublin 2, IE
View on infosec-jobs.com

Engineer - Sailpoint IdentityNow I Remote, Bangalore

@ Optiv | Bengaluru
View on infosec-jobs.com

Security Sales Specialist

@ NTT DATA | Madrid, Spain
View on infosec-jobs.com