You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@zookeeper.apache.org by "Ananya Singh (Jira)" <ji...@apache.org> on 2022/04/25 11:38:00 UTC

[jira] [Created] (ZOOKEEPER-4529) Upgrade netty to 4.1.75.Final

Ananya Singh created ZOOKEEPER-4529:
---------------------------------------

             Summary: Upgrade netty to 4.1.75.Final
                 Key: ZOOKEEPER-4529
                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4529
             Project: ZooKeeper
          Issue Type: Improvement
            Reporter: Ananya Singh
            Assignee: Ananya Singh


To resolve the CVEs generated due to netty-tcnative-classes:jar:2.0.46.Final we should upgrade netty version.

the following CVEs are coming due to dependency of io.netty:netty-codec:jar:4.1.73.Final on io.netty:netty-tcnative-classes:jar:2.0.46.Final.

 
CVE-2014-3488, CVE-2015-2156, CVE-2019-16869, CVE-2019-20444, CVE-2019-20445, CVE-2021-21290, CVE-2021-21295, CVE-2021-21409, CVE-2021-37136, CVE-2021-37137, CVE-2021-43797



--
This message was sent by Atlassian Jira
(v8.20.7#820007)