A vulnerability was discovered in XNIO where file descriptor leak caused by growing amounts of NIO Selector file handles between garbage collection cycles. It may allow the attacker to cause a denial of service. It affects XNIO versions 3.6.0.Beta1 through 3.8.1.Final.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1860218 | Issue Tracking Vendor Advisory |
https://www.oracle.com/security-alerts/cpujan2022.html | Patch Third Party Advisory |
https://www.oracle.com/security-alerts/cpuapr2022.html | Patch Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Information
Published : 2021-06-02 06:15
Updated : 2022-07-25 04:35
NVD link : CVE-2020-14340
Mitre link : CVE-2020-14340
JSON object : View
CWE
Products Affected
oracle
- communications_cloud_native_core_service_communication_proxy
- communications_cloud_native_core_unified_data_repository
- communications_cloud_native_core_network_repository_function
- communications_cloud_native_core_security_edge_protection_proxy
- communications_cloud_native_core_console
- communications_cloud_native_core_policy
redhat
- jboss_data_grid
- jboss_enterprise_application_platform
- jboss_operations_network
- jboss_soa_platform
- jboss_data_virtualization
- jboss_brms
- jboss_fuse
- xnio