search

confluentinc / kafka-connect-storage-common

Shared software among connectors that target distributed filesystems and cloud storage.
Other
5 stars 155 forks source link

Update netty to 4.1.86 to to address CVE-2022-41915 and put in line with Kafka version #296

Closed janjwerner-confluent closed 1 year ago

janjwerner-confluent commented 1 year ago

Problem

The netty dependency is out of date and should be updated to resolve CVE-2022-41915 in the connectors that use this common parent

Solution

Does this solution apply anywhere else?
If yes, where?

Test Strategy

Testing done:

Release Plan

pbadani commented 1 year ago

@janjwerner-confluent the only change in the PR is a whitespace.

janjwerner-confluent commented 1 year ago

@pbadani I apologize for that, pushed the correct fix.