Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.apache.thrift/libthrift@0.14.0
purl pkg:maven/org.apache.thrift/libthrift@0.14.0
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-gkzd-prsr-gqc8 Uncontrolled Resource Consumption in Apache Thrift In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service. CVE-2020-13949
GHSA-g2fg-mr77-6vrm

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T21:17:24.886699+00:00 GitLab Importer Fixing VCID-gkzd-prsr-gqc8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.thrift/libthrift/CVE-2020-13949.yml 38.4.0
2026-04-11T22:29:34.544129+00:00 GitLab Importer Fixing VCID-gkzd-prsr-gqc8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.thrift/libthrift/CVE-2020-13949.yml 38.3.0
2026-04-02T22:41:05.687848+00:00 GitLab Importer Fixing VCID-gkzd-prsr-gqc8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.thrift/libthrift/CVE-2020-13949.yml 38.1.0
2026-04-02T16:56:14.202516+00:00 GHSA Importer Fixing VCID-gkzd-prsr-gqc8 https://github.com/advisories/GHSA-g2fg-mr77-6vrm 38.1.0
2026-04-01T16:58:35.176799+00:00 GitLab Importer Fixing VCID-gkzd-prsr-gqc8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.thrift/libthrift/CVE-2020-13949.yml 38.0.0
2026-04-01T13:01:52.673957+00:00 GithubOSV Importer Fixing VCID-gkzd-prsr-gqc8 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/03/GHSA-g2fg-mr77-6vrm/GHSA-g2fg-mr77-6vrm.json 38.0.0