CVE-2021-32781

An out-of-bounds memory read vulnerability was found in envoyproxy/envoy. When using one of the following envoy extensions, it is possible to modify and increase the request or response body size of t ...

Continue Reading
CVE-2021-36155

LengthPrefixedMessageReader in gRPC Swift 1.1.0 and earlier allocates buffers of arbitrary length, which allows remote attackers to cause uncontrolled resource consumption and deny service.Read More ...

Continue Reading
CVE-2021-36154

HTTP2ToRawGRPCServerCodec in gRPC Swift 1.1.1 and earlier allows remote attackers to deny service via the delivery of many small messages within a single HTTP/2 frame, leading to Uncontrolled Recursio ...

Continue Reading
CVE-2021-36153

Mismanaged state in GRPCWebToHTTP2ServerCodec.swift in gRPC Swift 1.1.0 and 1.1.1 allows remote attackers to deny service by sending malformed requests.Read More ...

Continue Reading
Juniper Junos OS Multiple DoS Vulnerabilities (JSA11167)

The version of Junos OS installed on the remote host is affected by multiple denial of service vulnerabilities as referenced in the JSA11167 advisory: - Some HTTP/2 implementations are vulnerable to ...

Continue Reading
[SECURITY] Fedora 35 Update: golang-github-containerd-ttrpc-1.1.0-1.fc35

GRPC for low-memory environments. The existing grpc-go project requires a lot of memory overhead for importing packages and at runtime. While this is great for many services with low den sity require ...

Continue Reading
[SECURITY] Fedora 35 Update: grpcurl-1.8.6-2.fc35

Like cURL, but for gRPC: Command-line tool for interacting with gRPC server s.Read More ...

Continue Reading
[SECURITY] Fedora 35 Update: golang-github-grpc-ecosystem-gateway-2-2.7.3-3.fc35

GRPC to JSON proxy generator following the gRPC HTTP spec.Read More ...

Continue Reading

Back to Main

Subscribe for the latest news: