pkg:Maven/io.netty:netty-codec

4 total CVEsHIGH4

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2026-42583Netty Lz4FrameDecoder is vulnerable to resource exhaustion
    from 0, < 4.1.133.Final
  • HIGH7.5CVE-2025-58057Netty's decoders vulnerable to DoS via zip bomb style attack
    from 0, < 4.1.125.Final
  • HIGH7.5CVE-2021-37137SnappyFrameDecoder doesn't restrict chunk length any may buffer skippable chunks in an unnecessary way
    >= 4.0.0, < 4.1.68.Final
  • HIGH7.5CVE-2021-37136Bzip2Decoder doesn't allow setting size restrictions for decompressed data
    from 0, < 4.1.68.Final