[ https://issues.apache.org/jira/browse/CASSANDRA-15873?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17171781#comment-17171781 ]
Matt Davis commented on CASSANDRA-15873: ---------------------------------------- Thanks Brandon - if that's the case it may not be possible to integrate this without additional changes, and I wonder how much interest there is in making further changes for this. One last check - I see the comparison is from trunk on 4.0, would the 3.11.x branch yield the same results? > Update Netty 4.0.44 -> 4.1.50 (fix security/performance issues) > --------------------------------------------------------------- > > Key: CASSANDRA-15873 > URL: https://issues.apache.org/jira/browse/CASSANDRA-15873 > Project: Cassandra > Issue Type: Task > Components: Dependencies > Reporter: Matt Davis > Priority: Normal > Fix For: 3.11.x > > Attachments: dependency-check-report.html, unittest_netty.log > > > See https://issues.apache.org/jira/browse/CASSANDRA-15868 for the same issue > on 4.0 / trunk. Attached is an OWASP dependency report for Netty 4.0.44, > which identifies 3 of the same vulnerabilities as above. > > Additionally, 4.1.50 contains aarch64 native libraries which can improve > performance on ARM processors. > -- This message was sent by Atlassian Jira (v8.3.4#803005) --------------------------------------------------------------------- To unsubscribe, e-mail: commits-unsubscr...@cassandra.apache.org For additional commands, e-mail: commits-h...@cassandra.apache.org