[jira] [Updated] (RATIS-2381) Bump Netty to 4.1.130, gRPC to 1.77.1

Attila Doroszlai (Jira) Mon, 12 Jan 2026 09:54:49 -0800


     [ 
https://issues.apache.org/jira/browse/RATIS-2381?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Attila Doroszlai updated RATIS-2381:
------------------------------------
    Summary: Bump Netty to 4.1.130, gRPC to 1.77.1  (was: Bump Netty to 4.1.130)

> Bump Netty to 4.1.130, gRPC to 1.77.1
> -------------------------------------
>
>                 Key: RATIS-2381
>                 URL: https://issues.apache.org/jira/browse/RATIS-2381
>             Project: Ratis
>          Issue Type: Bug
>          Components: thirdparty
>            Reporter: Tsz-wo Sze
>            Assignee: Attila Doroszlai
>            Priority: Major
>          Time Spent: 20m
>  Remaining Estimate: 0h
>
> vulnerability-check has discovered the current netty dependency is vulnerable 
> to [CVE-2025-67735|https://nvd.nist.gov/vuln/detail/CVE-2025-67735]
> - https://github.com/apache/ratis/actions/runs/20898001247



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (RATIS-2381) Bump Netty to 4.1.130, gRPC to 1.77.1

Reply via email to