netty5

History

Norman Maurer f2cc94c7d4 Merge pull request from GHSA-grg4-wf29-r9vv Motivation: We should do the Bzip2 decoding in a streaming fashion and so ensure we propagate the buffer as soon as possible through the pipeline. This allows the users to release these buffers as fast as possible. Modification: - Change the Bzip2Decoder to do the decompression of data in a streaming fashion. - Add some safety check to ensure the block length never execeeds the maximum (as defined in the spec) Result: No more risk of an OOME by decompress some large data via bzip2. Thanks to Ori Hollander of JFrog Security for reporting the issue. (we got acquired during the process and now Vdoo is part of JFrog company)	2021-09-09 16:08:21 +02:00
..
src	Merge pull request from GHSA-grg4-wf29-r9vv	2021-09-09 16:08:21 +02:00
pom.xml	[Feature] Add zstd encoder (#11437 )	2021-07-06 14:57:39 +02:00

Norman Maurer f2cc94c7d4 Merge pull request from GHSA-grg4-wf29-r9vv

Motivation:

We should do the Bzip2 decoding in a streaming fashion and so ensure we propagate the buffer as soon as possible through the pipeline. This allows the users to release these buffers as fast as possible.

Modification:

- Change the Bzip2Decoder to do the decompression of data in a streaming fashion.
- Add some safety check to ensure the block length never execeeds the maximum (as defined in the spec)

Result:

No more risk of an OOME by decompress some large data via bzip2.

Thanks to Ori Hollander of JFrog Security for reporting the issue.

(we got acquired during the process and now Vdoo is part of JFrog company)

2021-09-09 16:08:21 +02:00

src

Merge pull request from GHSA-grg4-wf29-r9vv

2021-09-09 16:08:21 +02:00

pom.xml

[Feature] Add zstd encoder (#11437 )

2021-07-06 14:57:39 +02:00