VulnerableCode Package Details - pkg:deb/debian/jetty9@9.4.57-0%2Bdeb12u1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-1npy-8ft8-v3c4	Eclipse Jetty has a denial of service vulnerability on DosFilter	CVE-2024-9823 GHSA-j26w-f9rq-mr2q
VCID-297f-wcds-aqcw	Eclipse Jetty's PushSessionCacheFilter can cause remote DoS attacks	CVE-2024-6762 GHSA-r7m4-f9h5-gr79
VCID-8d2b-qrs3-7fgg	Eclipse Jetty's ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks	CVE-2024-8184 GHSA-g8m5-722r-8whq
VCID-juk7-qcef-zyer	UNSUPPORTED WHEN ASSIGNED GzipHandler causes part of request body to be seen as request body of a separate request In Eclipse Jetty versions 9.4.0 to 9.4.56 a buffer can be incorrectly released when confronted with a gzip error when inflating a request body. This can result in corrupted and/or inadvertent sharing of data between requests.	CVE-2024-13009 GHSA-q4rv-gq96-w7c5

Vulnerability

Summary

Aliases

VCID-1npy-8ft8-v3c4

Eclipse Jetty has a denial of service vulnerability on DosFilter

CVE-2024-9823
GHSA-j26w-f9rq-mr2q

VCID-297f-wcds-aqcw

Eclipse Jetty's PushSessionCacheFilter can cause remote DoS attacks

CVE-2024-6762
GHSA-r7m4-f9h5-gr79

VCID-8d2b-qrs3-7fgg

Eclipse Jetty's ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks

CVE-2024-8184
GHSA-g8m5-722r-8whq

VCID-juk7-qcef-zyer

**UNSUPPORTED WHEN ASSIGNED** GzipHandler causes part of request body to be seen as request body of a separate request In Eclipse Jetty versions 9.4.0 to 9.4.56 a buffer can be incorrectly released when confronted with a gzip error when inflating a request body. This can result in corrupted and/or inadvertent sharing of data between requests.

CVE-2024-13009
GHSA-q4rv-gq96-w7c5

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-21T21:55:34.918505+00:00	Debian Importer	Fixing	VCID-juk7-qcef-zyer	https://security-tracker.debian.org/tracker/data/json	36.1.3
2025-06-21T20:35:09.958034+00:00	Debian Importer	Fixing	VCID-1npy-8ft8-v3c4	https://security-tracker.debian.org/tracker/data/json	36.1.3
2025-06-21T12:57:41.399743+00:00	Debian Importer	Fixing	VCID-8d2b-qrs3-7fgg	https://security-tracker.debian.org/tracker/data/json	36.1.3
2025-05-18T03:08:01.751492+00:00	Debian Importer	Fixing	VCID-juk7-qcef-zyer	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-04-13T03:26:54.100613+00:00	Debian Oval Importer	Fixing	VCID-8d2b-qrs3-7fgg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-13T03:26:10.701226+00:00	Debian Oval Importer	Fixing	VCID-1npy-8ft8-v3c4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-13T03:25:02.455206+00:00	Debian Oval Importer	Fixing	VCID-297f-wcds-aqcw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-09T00:57:13.419483+00:00	Debian Importer	Fixing	VCID-297f-wcds-aqcw	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-04-06T21:33:48.148533+00:00	Debian Importer	Fixing	VCID-8d2b-qrs3-7fgg	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-04-06T19:43:48.739389+00:00	Debian Importer	Fixing	VCID-1npy-8ft8-v3c4	https://security-tracker.debian.org/tracker/data/json	36.0.0