Skip to content

CWE-770: Allocation of Resources Without Limits or Throttling through org.apache.httpcomponents.client5:httpclient5@5.6.1 #7123

Description

@maurogonzalez

Describe the feature

CWE-770: Allocation of Resources Without Limits or Throttling

Snyk: CVSS v4.0 7.1 - High Severity

CVSS v3.1 6.5 - Medium Severity

software.amazon.awssdk:aws-sdk-java@2.46.21 › software.amazon.awssdk:sns-message-manager@2.46.21 › org.apache.httpcomponents.client5:httpclient5@5.6.1 › org.apache.httpcomponents.core5:httpcore5-h2@5.4

Use Case

Security team requires us to fix vulnerabilities.

Proposed Solution

Update:

<httpcomponents.client5.version>5.6.1</httpcomponents.client5.version>

Other Information

No response

Acknowledgements

  • I may be able to implement this feature request
  • This feature might incur a breaking change

AWS Java SDK version used

2.46.21,2.47.0

JDK version used

21

Operating System and version

Amazon Linux 2023 (AL2023)

Metadata

Metadata

Assignees

Labels

bugThis issue is a bug.p2This is a standard priority issue

Type

No type

Fields

No fields configured for issues without a type.

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions