RSS   Vulnerabilities for 'Grpc swift'   RSS

2021-07-09
 
CVE-2021-36153

NVD-CWE-Other
 

 
Mismanaged state in GRPCWebToHTTP2ServerCodec.swift in gRPC Swift 1.1.0 and 1.1.1 allows remote attackers to deny service by sending malformed requests.

 
 
CVE-2021-36154

CWE-674
 

 
HTTP2ToRawGRPCServerCodec in gRPC Swift 1.1.1 and earlier allows remote attackers to deny service via the delivery of many small messages within a single HTTP/2 frame, leading to Uncontrolled Recursion and stack consumption.

 
 
CVE-2021-36155

CWE-120
 

 
LengthPrefixedMessageReader in gRPC Swift 1.1.0 and earlier allocates buffers of arbitrary length, which allows remote attackers to cause uncontrolled resource consumption and deny service.

 

 >>> Vendor: Linuxfoundation 32 Products
Foomatic-filters
XEN
DOJO
DEX
Fabric
Foomatic
Cups-filters
CEPH
RUNC
Harbor
Osquery
Open network operating system
ACRN
The update framework
Dojox
Argo continuous delivery
Free range routing
Jaeger
Nats-server
Containerd
Spinnaker
Indy-node
BESU
Argo-cd
Umoci
Backstage
Grpc swift
Cortex
Open container initiative distribution specification
Open container initiative image format specification
Auth backend
Kubeedge


Copyright 2024, cxsecurity.com

 

Back to Top