Tag
#Netty
blogCRITICAL 9.0
Understanding the Netty QUIC Token Handler Vulnerability
A vulnerability in Netty's default QUIC token handler allows an attacker to bypass anti-amplification limits, potentially leading to denial-of-service attacks. The issue arises from the token handler's improper validation of client-supplied tokens.
newsHIGH 8.0
Netty SNI Handler Vulnerability Allows for Large Memory Allocation
A vulnerability in Netty's SNI handler allows for large memory allocation from a small amount of attacker-controlled data, potentially leading to a denial-of-service attack.