Uploaded image for project: 'Kafka'
  1. Kafka
  2. KAFKA-14044

Upgrade Netty and Jackson for CVE fixes

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Minor
    • Resolution: Fixed
    • 3.2.0
    • 3.3.0
    • core

    Description

      There are a couple of CVEs for netty and Jackson:

      Netty: CVE-2022-24823 - Fixed by upgrading to 4.1.77+

      Jackson: CVE-2020-36518 - Fixed by upgrading to 2.13.0+

      Attachments

        Issue Links

          Activity

            People

              tomncooper Thomas Cooper
              tomncooper Thomas Cooper
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: