Security Advisories

CGA-3pv7-5j5f-w8rx

Published

Last updated

https://images.chainguard.dev/security/CGA-3pv7-5j5f-w8rx

Package

trino

Latest Update

Fixed

Fixed Version

440-r0

Aliases

Severity

7.5

High

CVSS V3

Summary

Uncontrolled Resource Consumption in Apache Thrift

Description

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.

References

Updates

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CGA-3pv7-5j5f-w8rx

Severity

Summary

Description

References

Updates

Product

Why Chainguard

Customers

Company

Resources