CVE-2021-21294: Uncontrolled Resource Consumption

February 2, 2021 (updated October 24, 2022)

Http4s (http4s-blaze-server) is a minimal, idiomatic Scala interface for HTTP services. Http4s has a vulnerability which can lead to a denial-of-service.

References

nvd.nist.gov/vuln/detail/CVE-2021-21294

Detect and mitigate CVE-2021-21294 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →