Io.netty:netty-codec
This hub aggregates every CVE we track for Io.netty:netty-codec, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
3
CVEs tracked
0
Critical
3
High
0
In CISA KEV
Severity distribution
HIGH3
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 3 most recently published vulnerabilities affecting Io.netty:netty-codec.
- CVE-2025-58057Netty's BrotliDecoder is vulnerable to DoS via zip bomb style attack7.5
- CVE-2021-37137The Snappy frame decoder function doesn't restrict the chunk length which may lead to excessive memory usage. Beside this it also may buffer reserved skippable chunks until the whole chunk was rece...7.5
- CVE-2021-37136The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data (which affects the allocation size used during decompression). All users of Bzip2Dec...7.5
Product normalization is registry-driven with AI assist and human review. How it works