[ https://issues.apache.org/jira/browse/CASSANDRA-15590?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17043563#comment-17043563 ]
Vishwas Vijaya Kumar edited comment on CASSANDRA-15590 at 2/24/20 2:30 PM: --------------------------------------------------------------------------- Netty has been upgraded and will be released as a part of 4.5.0. [JAVA-2637|https://datastax-oss.atlassian.net/browse/JAVA-2637] was (Author: visvijay): Netty has been upgraded and will be released as a part of 4.5.0. [JAVA-2637|[https://datastax-oss.atlassian.net/browse/JAVA-2637]] > Upgrade io.netty_netty-all dependency to fix security vulnerabilities > --------------------------------------------------------------------- > > Key: CASSANDRA-15590 > URL: https://issues.apache.org/jira/browse/CASSANDRA-15590 > Project: Cassandra > Issue Type: Task > Components: Dependencies > Reporter: Vishwas Vijaya Kumar > Priority: Normal > > Upgrade io.netty_netty-all dependency to fix the following CVEs: > * > [CVE-2019-20444|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20444] > * > [CVE-2019-20445|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20445] > * > [CVE-2019-16869|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16869] -- This message was sent by Atlassian Jira (v8.3.4#803005) --------------------------------------------------------------------- To unsubscribe, e-mail: commits-unsubscr...@cassandra.apache.org For additional commands, e-mail: commits-h...@cassandra.apache.org