soumyajose0784 opened a new issue #9979: URL: https://github.com/apache/druid/issues/9979
Druid use both 4.1.48 and 3.10.6.Final vesrions of netty jar of which lower vesrion is security vulnerable ### Affected Version 18.1 ### Description Though most of the netty jars are upgraded to higher version(4.1.48) in druid latest vesrion, itstill use one jar in older vesrion(netty-3.10.6.Final.jar). And this version 3.10.6.Final has security vulnerabilities associated with it. Anyone working on replacing netty-3.10.6.final as well to latest version? ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
