Back to bug 2215394
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Guilherme de Almeida Suckevicz | 2023-06-15 19:35:16 UTC | Blocks | 2215395 | |
| Guilherme de Almeida Suckevicz | 2023-06-15 19:42:58 UTC | Depends On | 2215401, 2215402, 2215400 | |
| Brenton Leanhardt | 2023-06-16 13:09:23 UTC | CC | bleanhar | |
| Avinash Hanwate | 2023-06-20 04:42:02 UTC | CC | dfreiber, jburrell, rogbas, vkumar | |
| CC | jcantril, periklis | |||
| Sandipan Roy | 2023-06-20 06:38:38 UTC | Depends On | 2216105, 2216106 | |
| Red Hat Bugzilla | 2023-07-07 08:32:47 UTC | Assignee | security-response-team | nobody |
| Red Hat Bugzilla | 2023-07-21 22:26:29 UTC | CC | jpavlik | |
| Chess Hazlett | 2023-08-08 16:50:07 UTC | Doc Text | Snappy-java's compress function does not check input sizes before beginning operations. An attacker could send malicious input to trigger an overflow error, thereby crashing the program and achieving Denial of Service. | |
| Fixed In Version | snappy-java 1.1.10.1 | |||
| Chess Hazlett | 2023-08-08 16:57:32 UTC | Alias | TRIAGE-CVE-2023-34454 | CVE-2023-34454 |
| Summary | TRIAGE-CVE-2023-34454 snappy-java: Integer overflow in compress leads to DoS | CVE-2023-34454 snappy-java: Integer overflow in compress leads to DoS | ||
| Paige Jung | 2023-08-08 17:03:54 UTC | Doc Text | Snappy-java's compress function does not check input sizes before beginning operations. An attacker could send malicious input to trigger an overflow error, thereby crashing the program and achieving Denial of Service. | A flaw was found in Snappy-java's shuffle function, which does not check input sizes before beginning operations. This issue could allow an attacker to send malicious input to trigger an overflow error that crashes the program, resulting in a denial of service. |
Back to bug 2215394