[jira] [Updated] (HADOOP-17649) Update wildfly openssl to 2.1.3.Final

ASF GitHub Bot (Jira) Fri, 08 Jul 2022 19:14:52 -0700


     [ 
https://issues.apache.org/jira/browse/HADOOP-17649?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


ASF GitHub Bot updated HADOOP-17649:
------------------------------------
    Labels: pull-request-available  (was: )

> Update wildfly openssl to 2.1.3.Final
> -------------------------------------
>
>                 Key: HADOOP-17649
>                 URL: https://issues.apache.org/jira/browse/HADOOP-17649
>             Project: Hadoop Common
>          Issue Type: Task
>            Reporter: Wei-Chiu Chuang
>            Assignee: Ashutosh Gupta
>            Priority: Major
>              Labels: pull-request-available
>          Time Spent: 2h 40m
>  Remaining Estimate: 0h
>
> https://nvd.nist.gov/vuln/detail/CVE-2020-25644
> A memory leak flaw was found in WildFly OpenSSL in versions prior to 
> 1.1.3.Final, where it removes an HTTP session. It may allow the attacker to 
> cause OOM leading to a denial of service. The highest threat from this 
> vulnerability is to system availability.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Updated] (HADOOP-17649) Update wildfly openssl to 2.1.3.Final

Reply via email to