This is an automated email from the ASF dual-hosted git repository.

yesamer pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/incubator-kie-drools.git


The following commit(s) were added to refs/heads/main by this push:
     new d7f9eefe5eb Add netty-codec-compression dependency management to fix 
CVE-2026-42583 (#6764)
d7f9eefe5eb is described below

commit d7f9eefe5eb8348e998b029dfffc2cdd38fe4f19
Author: athirakm94 <[email protected]>
AuthorDate: Thu Jun 25 23:20:17 2026 +0530

    Add netty-codec-compression dependency management to fix CVE-2026-42583 
(#6764)
---
 kie-parent/pom.xml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/kie-parent/pom.xml b/kie-parent/pom.xml
index 519ca70d700..6eda0a854a3 100644
--- a/kie-parent/pom.xml
+++ b/kie-parent/pom.xml
@@ -824,6 +824,12 @@
         <artifactId>netty-codec</artifactId>
         <version>${version.io.netty}</version>
       </dependency>
+      <!-- Netty codec-compression - explicitly managed to fix CVE -->
+      <dependency>
+        <groupId>io.netty</groupId>
+        <artifactId>netty-codec-compression</artifactId>
+        <version>${version.io.netty}</version>
+      </dependency>
       <dependency>
         <groupId>io.netty</groupId>
         <artifactId>netty-codec-dns</artifactId>


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to