Netty Incubator Codec Ohttp
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Netty Incubator Codec Ohttp.
By the Year
In 2026 there have been 0 vulnerabilities in Netty Incubator Codec Ohttp. Netty Incubator Codec Ohttp did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 1 | 9.10 |
It may take a day or so for new Netty Incubator Codec Ohttp vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Netty Incubator Codec Ohttp Security Vulnerabilities
Netty OHTTP seq num overflow causes nonce reuse
CVE-2024-36121
9.1 - Critical
- June 04, 2024
netty-incubator-codec-ohttp is the OHTTP implementation for netty. BoringSSLAEADContext keeps track of how many OHTTP responses have been sent and uses this sequence number to calculate the appropriate nonce to use with the encryption algorithm. Unfortunately, two separate errors combine which would allow an attacker to cause the sequence number to overflow and thus the nonce to repeat.
Integer Overflow or Wraparound
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Netty Incubator Codec Ohttp or by Netty? Click the Watch button to subscribe.
