You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-issues@hadoop.apache.org by "Steve Loughran (Jira)" <ji...@apache.org> on 2022/10/10 15:30:00 UTC

[jira] [Commented] (HADOOP-18123) Netty version 3.10.6 to be upgraded to handle CVE-2021-43797

    [ https://issues.apache.org/jira/browse/HADOOP-18123?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17615169#comment-17615169 ] 

Steve Loughran commented on HADOOP-18123:
-----------------------------------------

can we cut it for 3.3.5. i really would like all those security scan complaints to be quiet

> Netty version 3.10.6 to be upgraded to handle CVE-2021-43797
> ------------------------------------------------------------
>
>                 Key: HADOOP-18123
>                 URL: https://issues.apache.org/jira/browse/HADOOP-18123
>             Project: Hadoop Common
>          Issue Type: Bug
>    Affects Versions: 3.1.1
>            Reporter: Sushanta Sen
>            Priority: Major
>
> Netty version 3.10.6 to be upgraded to handle CVE-2021-43797, even Netty-4 upgraded to handle this issue.
> Please feedback



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org