GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This may lead to denial of service of the Okio client when handling a crafted GZIP archive, by using the GzipSource class.
Metrics
Affected Vendors & Products
References
History
Wed, 30 Oct 2024 02:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat openshift Devspaces
|
|
CPEs | cpe:/a:redhat:openshift_devspaces:3::el8 | |
Vendors & Products |
Redhat openshift Devspaces
|
Wed, 23 Oct 2024 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: JFROG
Published: 2023-07-12T18:34:31.609Z
Updated: 2024-10-23T13:32:52.994Z
Reserved: 2023-07-12T12:46:57.470Z
Link: CVE-2023-3635
Vulnrichment
Updated: 2024-08-02T07:01:57.503Z
NVD
Status : Modified
Published: 2023-07-12T19:15:08.983
Modified: 2024-11-21T08:17:43.213
Link: CVE-2023-3635
Redhat