Uploaded image for project: 'HBase'
  1. HBase
  2. HBASE-28486

fix CVE-2024-29025 in netty package

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Duplicate
    • None
    • None
    • None

    Description

      Following CVEs are observed in io.netty : netty-handler and io.netty : netty-codec-http : 4.1.100.Final

      CVE-2024-29025

      sonatype-2020-0026

       

       

      Attachments

        Issue Links

          is related to

          Sub-task - The sub-task of the issue HBASE-28491 [hbase-thirdparty] Bump netty to 4.1.108.Final for addressing CVE-2024-29025

          • Major - Major loss of function.
          • Resolved
          is superceded by

          Task - A task that needs to be done. HBASE-28511 Update hbase-thirdparty to 4.1.7

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link GitHub Pull Request #5794

          Web Link GitHub Pull Request #5798

          Activity

            People

              Unassigned Unassigned
              nikitapande Nikita Pande
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: