[jira] [Resolved] (HBASE-28486) fix CVE-2024-29025 in netty package

Duo Zhang (Jira) Sun, 21 Apr 2024 07:05:25 -0700


     [ 
https://issues.apache.org/jira/browse/HBASE-28486?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Duo Zhang resolved HBASE-28486.
-------------------------------
      Assignee:     (was: Nikita Pande)
    Resolution: Duplicate

Fixed via HBASE-28511.

Thanks [~nikitapande] for raising this up.

> fix CVE-2024-29025 in netty package 
> ------------------------------------
>
>                 Key: HBASE-28486
>                 URL: https://issues.apache.org/jira/browse/HBASE-28486
>             Project: HBase
>          Issue Type: Improvement
>            Reporter: Nikita Pande
>            Priority: Major
>              Labels: pull-request-available
>
> Following CVEs are observed in io.netty : netty-handler and io.netty : 
> netty-codec-http : 4.1.100.Final
> [CVE-2024-29025|http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-29025]
> sonatype-2020-0026
>  
>  



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Resolved] (HBASE-28486) fix CVE-2024-29025 in netty package

Reply via email to