Ubuntu Security Update USN-7918-1: Netty vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,784
Reaction score
74
Credits
-1,257
Jeppe Bonde Weikop discovered that Netty incorrectly parsed HTTP messages. When Netty is used with certain reverse proxies, a remote attacker could possibly use this issue to perform HTTP request smuggling attacks. (CVE-2025-58056) Jonas Konrad discovered that Netty did not properly manage memory when decoding compressed data. A remote attacker could possibly use this issue to cause Netty to consume excessive memory, resulting in a denial of service. This issue was only addressed in Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS, Ubuntu 25.04, and Ubuntu 25.10. (CVE-2025-58057)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Debian Security Update DSA-6160-1 netty - security update
Replies
0
Views
113
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8154-1: Django vulnerabilities
Replies
0
Views
127
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-7843-1: Netty vulnerability
Replies
0
Views
214
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8282-1: Unbound vulnerabilities
Replies
0
Views
109
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8154-2: Django vulnerabilities
Replies
0
Views
164
LinuxBot
LinuxBot


Follow Linux.org

Members online

Total: 2,821 (members: 4, guests: 2,817)

Latest posts

Top