OESA-2021-1435
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2021-1435
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2021-1435.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/OESA-2021-1435
- Upstream
- Published
- 2021-11-19T11:03:21Z
- Modified
- 2025-08-12T05:10:17.213963Z
- Summary
- apache-mina security update
- Details
-
Apache MINA is a network application framework which helps users develop high performance and high scalability network applications easily. It provides an abstract event-driven asynchronous API over various transports such as TCP/IP and UDP/IP via Java NIO.
Security Fix(es):
In Apache MINA, a specifically crafted, malformed HTTP request may cause the HTTP Header decoder to loop indefinitely. The decoder assumed that the HTTP Header begins at the beginning of the buffer and loops if there is more data than expected. Please update MINA to 2.1.5 or greater.(CVE-2021-41973)
- Database specific
{ "severity": "Medium" }- References
Affected packages
openEuler:20.03-LTS-SP1 / apache-mina
Package
- Name
- apache-mina
- Purl
- pkg:rpm/openEuler/apache-mina&distro=openEuler-20.03-LTS-SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.0.21-2.oe1
Ecosystem specific
{
"noarch": [
"apache-mina-mina-filter-compression-2.0.21-2.oe1.noarch.rpm",
"apache-mina-javadoc-2.0.21-2.oe1.noarch.rpm",
"apache-mina-mina-http-2.0.21-2.oe1.noarch.rpm",
"apache-mina-mina-statemachine-2.0.21-2.oe1.noarch.rpm",
"apache-mina-mina-core-2.0.21-2.oe1.noarch.rpm",
"apache-mina-2.0.21-2.oe1.noarch.rpm"
],
"src": [
"apache-mina-2.0.21-2.oe1.src.rpm"
]
}
openEuler:20.03-LTS-SP2 / apache-mina
Package
- Name
- apache-mina
- Purl
- pkg:rpm/openEuler/apache-mina&distro=openEuler-20.03-LTS-SP2
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.0.21-2.oe1
Ecosystem specific
{
"noarch": [
"apache-mina-2.0.21-2.oe1.noarch.rpm",
"apache-mina-mina-statemachine-2.0.21-2.oe1.noarch.rpm",
"apache-mina-mina-http-2.0.21-2.oe1.noarch.rpm",
"apache-mina-mina-core-2.0.21-2.oe1.noarch.rpm",
"apache-mina-javadoc-2.0.21-2.oe1.noarch.rpm",
"apache-mina-mina-filter-compression-2.0.21-2.oe1.noarch.rpm"
],
"src": [
"apache-mina-2.0.21-2.oe1.src.rpm"
]
}