Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Outdated version of netty #2310

Closed
rstosick opened this issue Jan 31, 2023 · 1 comment
Closed

Outdated version of netty #2310

rstosick opened this issue Jan 31, 2023 · 1 comment
Labels
type: dependency-upgrade A dependency upgrade

Comments

@rstosick
Copy link

rstosick commented Jan 31, 2023
edited

Bug Report

The version of netty currently used (4.1.85.Final) has a vulnerability and should be upgraded to 4.1.86.Final
https://security.snyk.io/vuln/SNYK-JAVA-IONETTY-3167773

I opened #2311 to fix it.
@rstosick rstosick mentioned this issue Jan 31, 2023
Closed
4 tasks
@mp911de
Copy link
Collaborator

mp911de commented Feb 14, 2023

Fixed via your PR #2311. Thanks a lot. FWIW, Lettuce isn't using the netty-codec library and we do not use HTTP.

@mp911de mp911de closed this as completed Feb 14, 2023
@mp911de mp911de added the type: dependency-upgrade A dependency upgrade label Feb 14, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
type: dependency-upgrade A dependency upgrade
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mp911de @rstosick