Alexey Serbin has uploaded this change for review. ( http://gerrit.cloudera.org:8080/22136
Change subject: [java] update Netty from 4.1.100.Final to 4.1.115.Final ...................................................................... [java] update Netty from 4.1.100.Final to 4.1.115.Final This is to address at least CVE-2024-29025 and CVE-2024-47535 and make security scanners happier. More information on the vulnerabilities are available at [1], [2]. Please note that [2] isn't relevant to Kudu Java client since the client doesn't use HTTP-related functionality in Netty. This is to address KUDU-3629, at least partially. [1] https://github.com/netty/netty/security/advisories/GHSA-xq3w-v528-46rv [2] https://github.com/netty/netty/security/advisories/GHSA-5jpm-x58v-624v Change-Id: Iabd8fb7d43b9ee03fb681ab3d92f271ef2e490b1 --- M java/gradle/dependencies.gradle 1 file changed, 1 insertion(+), 1 deletion(-) git pull ssh://gerrit.cloudera.org:29418/kudu refs/changes/36/22136/1 -- To view, visit http://gerrit.cloudera.org:8080/22136 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: kudu Gerrit-Branch: master Gerrit-MessageType: newchange Gerrit-Change-Id: Iabd8fb7d43b9ee03fb681ab3d92f271ef2e490b1 Gerrit-Change-Number: 22136 Gerrit-PatchSet: 1 Gerrit-Owner: Alexey Serbin <[email protected]>
