You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@flink.apache.org by "Hongbo (Jira)" <ji...@apache.org> on 2022/08/22 16:06:00 UTC

[jira] [Created] (FLINK-29065) Flink v1.15.1 contains netty(version:3.10.6). There are many vulnerabilities, like CVE-2021-21409 etc. please confirm these version and fix. thx

Hongbo created FLINK-29065:
------------------------------

             Summary: Flink v1.15.1 contains netty(version:3.10.6). There are many vulnerabilities, like CVE-2021-21409 etc. please confirm these version and fix. thx
                 Key: FLINK-29065
                 URL: https://issues.apache.org/jira/browse/FLINK-29065
             Project: Flink
          Issue Type: Bug
          Components: Runtime / Coordination
    Affects Versions: 1.11.3, 1.12.2, 1.13.0
            Reporter: Hongbo


In Flink v1.11.3 contains netty(version:3.10.6) netty(version:4.1.60) . There are many vulnerabilities, like CVE-2021-21409 CVE-2021-21295 etc. please confirm these version and fix. thx



--
This message was sent by Atlassian Jira
(v8.20.10#820010)