VulnerableCode Package Details - pkg:maven/io.netty/netty-all@4.0.0.Alpha1

Search for packages

Package details: pkg:maven/io.netty/netty-all@4.0.0.Alpha1

Essentials
History (2)

purl	pkg:maven/io.netty/netty-all@4.0.0.Alpha1
Tags	Ghost

Next non-vulnerable version	4.1.94.Final
Latest non-vulnerable version	4.1.94.Final
Risk	4.0

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-g5mm-cvj7-gycb Aliases: CVE-2019-16869 GHSA-p979-4mfw-53vg	Netty before 4.1.42.Final mishandles whitespace before the colon in HTTP headers (such as a "Transfer-Encoding : chunked" line), which leads to HTTP request smuggling.	4.1.42.Final Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-pea1-uju4-myaa Aliases: CVE-2014-0193 GHSA-7vpq-g998-qpv7		4.0.19.Final Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-05T18:41:29.006894+00:00	GHSA Importer	Affected by	VCID-pea1-uju4-myaa	https://github.com/advisories/GHSA-7vpq-g998-qpv7	37.0.0
2025-07-01T14:29:54.864197+00:00	GHSA Importer	Affected by	VCID-g5mm-cvj7-gycb	https://github.com/advisories/GHSA-p979-4mfw-53vg	36.1.3