handler/ssl/OpenSslEngine.java in Netty 4.0.x before 4.0.37.Final and 4.1.x before 4.1.1.Final allows remote attackers to cause a denial of service (infinite loop).
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Netty | Netty | 4.0.20 (including) | 4.0.37 (excluding) |
Netty | Netty | 4.1.0 (including) | 4.1.1 (excluding) |