[SOLR-14296] Update netty to 4.1.47 - ASF JIRA

Agile Board

Attach files

Attach Screenshot

Voters

Watch issue

Watchers

Create sub-task

Link

Clone

Update Comment Author

Replace String in Comment

Update Comment Visibility

Delete Comments

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 8.6
Component/s: None
Labels:
None

Description

There are two CVEs against the current netty version:

https://nvd.nist.gov/vuln/detail/CVE-2019-20444
https://nvd.nist.gov/vuln/detail/CVE-2019-20445

Although solr is not affected it would be still good to update netty.

The first non-affected netty version is 4.1.45 but during the update I've found a netty bug ( https://github.com/netty/netty/issues/10017 ) so it's better to update to 4.1.46

Attachments

SOLR-14296-01.patch
02/Mar/20 11:30
8 kB
Andras Salamon

Issue Links

Add Link

is part of

SOLR-14312 Upgrade Zookeeper to 3.5.7

Closed

Delete this link

Activity

Comment

This comment will be Viewable by All Users Viewable by All Users

Cancel

People

Assignee:: Unassigned

Reporter:: Andras Salamon

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 02/Mar/20 11:30

Updated:: 15/Jul/20 15:09

Resolved:: 16/Mar/20 02:16

Agile

View on Board

Update netty to 4.1.47

Details

Description

Attachments

Attachments

Issue Links

Activity

People

Dates

Agile

Slack

Issue deployment