CVE-2021-43045
N/A
N/A
Summary
A vulnerability in the .NET SDK of Apache Avro allows an attacker to allocate excessive resources, potentially causing a denial-of-service attack. This issue affects .NET applications using Apache Avro version 1.10.2 and prior versions. Users should update to version 1.11.0 which addresses this issue.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Apache Software Foundation | Apache Avro | Apache Avro <= 1.10.2 | affected |
Weaknesses
- CWE-770: CWE-770
ADP Enrichment
CVE Program Container
Additional References
- https://lists.apache.org/thread/5fttw9vk6gd2p3b846nox7hcj5469xfd
- http://www.openwall.com/lists/oss-security/2022/01/06/8
References
- https://lists.apache.org/thread/5fttw9vk6gd2p3b846nox7hcj5469xfd
- http://www.openwall.com/lists/oss-security/2022/01/06/8
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.