Skip to content

[Java] Upgrade Netty due to CVE #36209

New issue
New issue
Closed
#36211
Closed
[Java] Upgrade Netty due to CVE#36209
#36211
Assignees
BryanCutler
Labels
Component: JavaCritical FixBugfixes for security vulnerabilities, crashes, or invalid data.Type: bug
Milestone
13.0.0
@BryanCutler

Description

@BryanCutler
BryanCutler
opened on Jun 21, 2023

Describe the bug, including details regarding any error messages, version, and platform.

CVE GHSA-6mjq-h674-j845 fixed in Netty 4.1.94.Final

I don't think this relates to Arrow usage with Netty, but there is an API change that Arrow is not compatible with and needs a patch.

Component(s)

Java

Metadata

Metadata

Assignees

Labels

Component: JavaCritical FixBugfixes for security vulnerabilities, crashes, or invalid data.Type: bug

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions