[
https://issues.apache.org/jira/browse/CASSANDRA-15873?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17172425#comment-17172425
]
Brandon Williams commented on CASSANDRA-15873:
----------------------------------------------
Well, that's kind of moot in a couple of ways. If we're going to break tests
on trunk by merging 3.11, we're going to revert that. Also it was decided in
CASSANDRA-15868 not to include this in 3.11. That said, if it can help
troubleshoot, I saw your 3.11 PR there and made a branch to run CI on, which I
did here:
https://ci-cassandra.apache.org/job/Cassandra-devbranch/231/
There's a teardown failure at
https://ci-cassandra.apache.org/job/Cassandra-devbranch/231/testReport/junit/dtest.cqlsh_tests.test_cqlsh_copy/TestCqlshCopy/test_reading_max_insert_errors/
and the SSL failure also persists.
> Update Netty 4.0.44 -> 4.1.50 (fix security/performance issues)
> ---------------------------------------------------------------
>
> Key: CASSANDRA-15873
> URL: https://issues.apache.org/jira/browse/CASSANDRA-15873
> Project: Cassandra
> Issue Type: Task
> Components: Dependencies
> Reporter: Matt Davis
> Priority: Normal
> Fix For: 3.11.x
>
> Attachments: dependency-check-report.html, unittest_netty.log
>
>
> See https://issues.apache.org/jira/browse/CASSANDRA-15868 for the same issue
> on 4.0 / trunk. Attached is an OWASP dependency report for Netty 4.0.44,
> which identifies 3 of the same vulnerabilities as above.
>
> Additionally, 4.1.50 contains aarch64 native libraries which can improve
> performance on ARM processors.
>
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
