Lucene search
Https://gitlab.com/gitlab-org/security-products/gemnasium-dbGITLAB-3ECC83531EB5CA0669D073E0645286D7HistoryFeb 12, 2021 - 12:00 a.m.
Uncontrolled Resource Consumption
2021-02-1200:00:00
https://gitlab.com/gitlab-org/security-products/gemnasium-db
gitlab.com
12
0.062 Low
EPSS
Percentile
93.6%
In Apache Thrift to, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.
| CPE | Name | Operator | Version |
|---|---|---|---|
| go/github.com/apache/thrift/lib/go/thrift | ge | v0.9.3 | |
| go/github.com/apache/thrift/lib/go/thrift | le | v0.13.0 |
References
Related
nessus
nessus
EulerOS 2.0 SP9 : isula-sec (EulerOS-SA-2021-1928)
2021-06-03 00:00:00
EulerOS 2.0 SP9 : isula-sec (EulerOS-SA-2021-1949)
2021-06-03 00:00:00
GLSA-202107-32 : Apache Thrift: Multiple vulnerabilities
2022-01-24 00:00:00
osv
osv
Uncontrolled Resource Consumption in Apache Thrift
2021-03-12 21:33:55
CVE-2020-13949
2021-02-12 20:15:13
github
github
Uncontrolled Resource Consumption in Apache Thrift
2021-03-12 21:33:55
prion
prion
Design/Logic Flaw
2021-02-12 20:15:00
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0578)
2022-01-28 00:00:00
Huawei EulerOS: Security Advisory for isula-sec (EulerOS-SA-2021-1928)
2021-06-07 00:00:00
Huawei EulerOS: Security Advisory for isula-sec (EulerOS-SA-2021-1949)
2021-06-07 00:00:00
nvd
nvd
CVE-2020-13949
2021-02-12 20:15:13
ibm
ibm
cgr
cgr
CVE-2020-13949 vulnerabilities
2024-05-19 03:07:16
cvelist
cvelist
CVE-2020-13949
2021-02-12 19:39:09
cve
cve
CVE-2020-13949
2021-02-12 20:15:13
redhatcve
redhatcve
CVE-2020-13949
2021-02-12 15:32:00
debiancve
debiancve
CVE-2020-13949
2021-02-12 20:15:13
mageia
mageia
Updated thrift/golang-github-apache-thrift packages fix security vulnerability
2021-12-24 00:01:45
archlinux
archlinux
[ASA-202102-43] thrift: denial of service
2021-02-27 00:00:00
ubuntucve
ubuntucve
CVE-2020-13949
2021-02-12 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-03-26 06:02:12
alpinelinux
alpinelinux
CVE-2020-13949
2021-02-12 20:15:13
wolfi
wolfi
CVE-2020-13949 vulnerabilities
2024-07-03 09:08:38
gentoo
gentoo
Apache Thrift: Multiple vulnerabilities
2021-07-14 00:00:00
redhat
redhat
(RHSA-2021:2543) Moderate: Red Hat OpenShift Jaeger 1.20.4 security update
2021-06-24 15:15:19
(RHSA-2021:5134) Critical: Red Hat Fuse 7.10.0 release and security update
2021-12-14 21:27:54
oracle
oracle
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00
Oracle Critical Patch Update Advisory - January 2022
2022-01-18 00:00:00