Search for packages
| purl | pkg:deb/debian/undertow@2.1.1-1?distro=sid |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-k6c9-mckm-cyhy | HTTP Request Smuggling in Undertow A flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling. |
CVE-2020-10719
GHSA-cccf-7xw3-p2vr |
| VCID-urxh-sp91-kuet | Allocation of Resources Without Limits or Throttling in Undertow A flaw was discovered in Undertow in versions before Undertow 2.1.1.Final where certain requests to the "Expect: 100-continue" header may cause an out of memory error. This flaw may potentially lead to a denial of service. |
CVE-2020-10705
GHSA-g4cp-h53p-v3v8 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T12:34:45.693724+00:00 | Debian Importer | Fixing | VCID-urxh-sp91-kuet | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-16T10:14:19.093438+00:00 | Debian Importer | Fixing | VCID-k6c9-mckm-cyhy | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-13T08:36:54.372972+00:00 | Debian Importer | Fixing | VCID-urxh-sp91-kuet | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-13T06:53:03.892647+00:00 | Debian Importer | Fixing | VCID-k6c9-mckm-cyhy | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-03T07:55:45.140970+00:00 | Debian Importer | Fixing | VCID-k6c9-mckm-cyhy | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |
| 2026-04-03T07:55:45.116449+00:00 | Debian Importer | Fixing | VCID-urxh-sp91-kuet | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |