kafka-clients is vulnerable to denial of service. An attacker can crash the application through the OutOfMemoryException in the readArray
function of ByteBufferAccessor.java
by providing large amounts of memory on brokers.
github.com/advisories/GHSA-c9h3-c6qj-hh7q
github.com/apache/kafka/commit/14951a83e3fdead212156e5532359500d72f68bc
github.com/apache/kafka/commit/56baf6448f0540d30e82c858e8e242094e95df7f
github.com/apache/kafka/commit/aaceb6b79bfcb1d32874ccdbc8f3138d1c1c00fb
github.com/apache/kafka/commit/c1295662768e64b4467e27c3d5158f95f2307657
kafka.apache.org/cve-list