[
https://issues.apache.org/jira/browse/HADOOP-18123?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17490735#comment-17490735
]
Ayush Saxena commented on HADOOP-18123:
---------------------------------------
component seems wrong, "hadoop-thridparty" doesn't seems to have netty
[https://github.com/apache/hadoop-thirdparty]
if it doesn't break anything or introduces any compatibility problems, I don't
think there is any harm in upgrading it
> Netty version 3.10.6 to be upgraded to handle CVE-2021-43797
> ------------------------------------------------------------
>
> Key: HADOOP-18123
> URL: https://issues.apache.org/jira/browse/HADOOP-18123
> Project: Hadoop Common
> Issue Type: Bug
> Components: hadoop-thirdparty
> Affects Versions: 3.1.1
> Reporter: Sushanta Sen
> Priority: Major
>
> Netty version 3.10.6 to be upgraded to handle CVE-2021-43797, even Netty-4
> upgraded to handle this issue.
> Please feedback
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org
For additional commands, e-mail: common-issues-h...@hadoop.apache.org
