if CVE-2022-24963 afftected netty-tcnative
kevinkwok326 opened this issue · comments
grammee commented
CVE-2022-24963 reported recently that Integer Overflow or Wraparound vulnerability in apr_encode functions of Apache Portable Runtime (APR) allows an attacker to write beyond bounds of a buffer. This issue affects Apache Portable Runtime (APR) version 1.7.0.
Norman Maurer commented
We are not affected we dont use this function or any function that depends on it.