{"schema_version":"1.7.2","id":"OESA-2024-2600","modified":"2024-12-27T12:33:58Z","published":"2024-12-27T12:33:58Z","upstream":["CVE-2024-51504"],"summary":"zookeeper security update","details":"ZooKeeper is a centralized service for maintaining configuration information, naming, providing distributed synchronization, and providing group services.\r\n\r\nSecurity Fix(es):\r\n\r\nA vulnerability has been found in Apache ZooKeeper up to 3.9.2 and classified as critical. This vulnerability affects some unknown processing of the component HTTP Request Header Handler. Upgrading to version 3.9.3 eliminates this vulnerability.(CVE-2024-51504)","affected":[{"package":{"ecosystem":"openEuler:24.03-LTS","name":"zookeeper","purl":"pkg:rpm/openEuler/zookeeper\u0026distro=openEuler-24.03-LTS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.9.3-1.oe2403"}]}],"ecosystem_specific":{"aarch64":["zookeeper-3.9.3-1.oe2403.aarch64.rpm"],"src":["zookeeper-3.9.3-1.oe2403.src.rpm"],"x86_64":["zookeeper-3.9.3-1.oe2403.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2600"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-51504"}],"database_specific":{"severity":"Critical"}}