Vulnerabilities

CVE-2020-7238

by Fred · 27/01/2020

Netty 4.1.43.Final allows HTTP Request Smuggling because it mishandles Transfer-Encoding whitespace (such as a [space]Transfer-Encoding:chunked line) and a later Content-Length header. This issue exists because of an incomplete fix for CVE-2019-16869.

Date published : 2020-01-27

https://www.debian.org/security/2021/dsa-4885

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TS6VX7OMXPDJIU5LRGUAHRK6MENAVJ46/

Similar

Tags: Cybersecurity Alert