This is an automated email from the ASF dual-hosted git repository.
yesamer pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/incubator-kie-drools.git
The following commit(s) were added to refs/heads/main by this push:
new d7f9eefe5eb Add netty-codec-compression dependency management to fix
CVE-2026-42583 (#6764)
d7f9eefe5eb is described below
commit d7f9eefe5eb8348e998b029dfffc2cdd38fe4f19
Author: athirakm94 <[email protected]>
AuthorDate: Thu Jun 25 23:20:17 2026 +0530
Add netty-codec-compression dependency management to fix CVE-2026-42583
(#6764)
---
kie-parent/pom.xml | 6 ++++++
1 file changed, 6 insertions(+)
diff --git a/kie-parent/pom.xml b/kie-parent/pom.xml
index 519ca70d700..6eda0a854a3 100644
--- a/kie-parent/pom.xml
+++ b/kie-parent/pom.xml
@@ -824,6 +824,12 @@
<artifactId>netty-codec</artifactId>
<version>${version.io.netty}</version>
</dependency>
+ <!-- Netty codec-compression - explicitly managed to fix CVE -->
+ <dependency>
+ <groupId>io.netty</groupId>
+ <artifactId>netty-codec-compression</artifactId>
+ <version>${version.io.netty}</version>
+ </dependency>
<dependency>
<groupId>io.netty</groupId>
<artifactId>netty-codec-dns</artifactId>
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]