handler/ssl/OpenSslEngine.java in Netty 4.0.x before 4.0.37.Final and 4.1.x before 4.1.1.Final allows remote attackers to cause a denial of service (infinite loop).
{
"unresolved_ranges": [
{
"cpes": [
"cpe:2.3:a:redhat:jboss_data_grid:7.1:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "7.1"
},
{
"last_affected": "7.1"
}
],
"vendor_product": "redhat:jboss_data_grid",
"source": "CPE_STRING"
},
{
"cpes": [
"cpe:2.3:a:redhat:jboss_middleware_text-only_advisories:1.0:*:*:*:*:middleware:*:*"
],
"extracted_events": [
{
"introduced": "1.0"
},
{
"last_affected": "1.0"
}
],
"vendor_product": "redhat:jboss_middleware_text-only_advisories",
"source": "CPE_STRING"
}
]
}