OESA-2024-1220
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1220
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2024-1220.json
- JSON Data
- https://api.osv.dev/v1/vulns/OESA-2024-1220
- Upstream
- Published
- 2024-03-01T11:07:05Z
- Modified
- 2025-09-03T06:17:40.620623Z
- Summary
- jss security update
- Details
-
JSS offers a implementation for java-based applications to use native NSS.
Security Fix(es):
A flaw was found in JSS, where it did not properly free up all memory. Over time, the wasted memory builds up in the server memory, saturating the server’s RAM. This flaw allows an attacker to force the invocation of an out-of-memory process, causing a denial of service.(CVE-2021-4213)
- Database specific
{ "severity": "High" }- References
Affected packages
openEuler:20.03-LTS-SP1 / jss
Package
- Name
- jss
- Purl
- pkg:rpm/openEuler/jss&distro=openEuler-20.03-LTS-SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.9.3-1.oe1
Ecosystem specific
{
"src": [
"jss-4.9.3-1.oe1.src.rpm"
],
"x86_64": [
"jss-debuginfo-4.9.3-1.oe1.x86_64.rpm",
"jss-help-4.9.3-1.oe1.x86_64.rpm",
"jss-debugsource-4.9.3-1.oe1.x86_64.rpm",
"jss-4.9.3-1.oe1.x86_64.rpm"
],
"aarch64": [
"jss-help-4.9.3-1.oe1.aarch64.rpm",
"jss-debugsource-4.9.3-1.oe1.aarch64.rpm",
"jss-4.9.3-1.oe1.aarch64.rpm",
"jss-debuginfo-4.9.3-1.oe1.aarch64.rpm"
]
}