[jira] [Commented] (TINKERPOP-2983) Upgrade Netty for Security Reasons

Cole Greer (Jira) Tue, 15 Aug 2023 14:52:04 -0700


    [ 
https://issues.apache.org/jira/browse/TINKERPOP-2983?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17754781#comment-17754781
 ]


Cole Greer commented on TINKERPOP-2983:
---------------------------------------

Resolved with 
https://github.com/apache/tinkerpop/commit/0fc0c89e107656273450ba7d3890e9df9e169e18

> Upgrade Netty for Security Reasons
> ----------------------------------
>
>                 Key: TINKERPOP-2983
>                 URL: https://issues.apache.org/jira/browse/TINKERPOP-2983
>             Project: TinkerPop
>          Issue Type: Bug
>          Components: driver, server
>    Affects Versions: 3.7.0
>            Reporter: Luca Garulli
>            Priority: Major
>              Labels: security
>
> Gremlin 3.7.0 (and previous) depends on Netty 4.1.86 that has a severe 
> security issue reported on [https://nvd.nist.gov/vuln/detail/CVE-2023-34462.]
>  
> The latest Netty version right now if 4.1.96.Final.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (TINKERPOP-2983) Upgrade Netty for Security Reasons

Reply via email to