[ZOOKEEPER-4649] Upgrade netty to 4.1.86 because of CVE-2022-41915 - ASF JIRA

Voters

Watch issue

Watchers

Create sub-task

Link

Clone

Update Comment Author

Replace String in Comment

Update Comment Visibility

Delete Comments

XML

Word

Printable

JSON

Details

Type: Task
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.6.4, 3.9.0, 3.8.1, 3.7.2
Component/s: None
Labels:
- pull-request-available

Description

Yesterday a new netty version was released fixing [CVE-2022-41915| https://nvd.nist.gov/vuln/detail/CVE-2022-41915.] We need to upgrade the netty version.

Attachments

Issue Links

Add Link

links to

GitHub Pull Request #1963

Delete this link

GitHub Pull Request #1964

Delete this link

Activity

Comment

This comment will be Viewable by All Users Viewable by All Users

Cancel

People

Assignee:: Mate Szalay-Beko

Reporter:: Mate Szalay-Beko

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 13/Dec/22 17:54

Updated:: 30/Jan/23 07:57

Resolved:: 19/Jan/23 11:04

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

Upgrade netty to 4.1.86 because of CVE-2022-41915