search

Tencent / TubeMQ

TubeMQ has been donated to the Apache Software Foundation and renamed to InLong, please visit the new Apache repository: https://github.com/apache/incubator-inlong
https://inlong.apache.org/
2.02k stars 391 forks source link

There is a vulnerability in netty 3.8.0.Final,upgrade recommended #159

Open QiAnXinCodeSafe opened 3 years ago

QiAnXinCodeSafe commented 3 years ago

https://github.com/Tencent/TubeMQ/blob/dc64162c0ffc07805f619f17c45c9d387134172a/pom.xml#L223-L225

CVE-2019-20444 CVE-2019-20445 CVE-2019-16869

Recommended upgrade version:4.1.51.Final

aritranandi commented 3 years ago

Same error comming with me