[CASSANDRA-18808] netty-handler vulnerability: CVE-2023-4586 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Normal
Resolution: Invalid
Fix Version/s: 5.0-rc1, 5.0, 5.x
Component/s: Consistency/Coordination
Labels:
None

Bug Category:
Security
Severity:
Normal
Complexity:
Normal
Discovered By:
User Report
Platform:

All
Impacts:

None

Description

This is failing OWASP:

Dependency-Check Failure:
One or more dependencies were identified with vulnerabilities that have a CVSS score greater than or equal to '1.0': 
netty-handler-4.1.96.Final.jar: CVE-2023-4586

Attachments

Issue Links

is duplicated by

CASSANDRA-18812 Investigate and fix CVE-2023-4586

Resolved

relates to

CASSANDRA-18922 cassandra-driver-core-3.11.5 vulnerability: CVE-2023-4586

Resolved

Activity

People

Assignee:: Brandon Williams

Reporter:: Brandon Williams

Authors:: Brandon Williams

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 30/Aug/23 13:34

Updated:: 18/Jul/24 21:22

Resolved:: 28/Mar/24 19:35