You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cassandra.apache.org by "Aleksey Yeschenko (Jira)" <ji...@apache.org> on 2020/06/22 12:21:00 UTC
[jira] [Comment Edited] (CASSANDRA-15873) Update Netty 4.0.44 ->
4.1.50 (fix security/performance issues)
[ https://issues.apache.org/jira/browse/CASSANDRA-15873?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17141982#comment-17141982 ]
Aleksey Yeschenko edited comment on CASSANDRA-15873 at 6/22/20, 12:20 PM:
--------------------------------------------------------------------------
[~mattsplat] running tests, dtests, and perhaps java driver test suite against this would make me comfortable enough, personally. Though I don't have time right now to do it myself.
was (Author: iamaleksey):
[~mattsplat] running tests, dtests, and perhaps java driver test suite against this would make me comfortable enough, personally.
> Update Netty 4.0.44 -> 4.1.50 (fix security/performance issues)
> ---------------------------------------------------------------
>
> Key: CASSANDRA-15873
> URL: https://issues.apache.org/jira/browse/CASSANDRA-15873
> Project: Cassandra
> Issue Type: Task
> Components: Dependencies
> Reporter: Matt Davis
> Assignee: Matt Davis
> Priority: Normal
> Fix For: 3.11.x
>
> Attachments: dependency-check-report.html
>
>
> See https://issues.apache.org/jira/browse/CASSANDRA-15868 for the same issue on 4.0 / trunk. Attached is an OWASP dependency report for Netty 4.0.44, which identifies 3 of the same vulnerabilities as above.
>
> Additionally, 4.1.50 contains aarch64 native libraries which can improve performance on ARM processors.
>
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@cassandra.apache.org
For additional commands, e-mail: commits-help@cassandra.apache.org