Classification: Public Hi Team,
We at Deutsche Bank are using Apache Beam SDK 2.41.0 and it has Vulnerabilities of netty-codec under beam-vendor-grpc jar. We checked the Github fixes and seems like the code is fixed and merged. We wanted to understand when can we expect Apache Beam SDK 2.42.0 Version, so that we can start using it. We have some urgent requirement for this fix, If you can provide some dates that will help. Kind Regards, Varun Chopra --- This e-mail may contain confidential and/or privileged information. If you are not the intended recipient (or have received this e-mail in error) please notify the sender immediately and destroy this e-mail. Any unauthorized copying, disclosure or distribution of the material in this e-mail is strictly forbidden. Privacy of communications In order to monitor compliance with legal and regulatory obligations and our policies, procedures and compliance programs, we may review emails and instant messages passing through our IT systems (including any personal data and customer information they contain), and record telephone calls routed via our telephone systems. We will only do so in accordance with local laws and regulations. In some countries please refer to your local DB website for a copy of our Privacy Policy. Please refer to https://db.com/disclosures for additional EU corporate and regulatory disclosures.