search

vert-x3 / issues

Apache License 2.0
37 stars 7 forks source link

Upgrade dependency Netty to 4.1.42 due to Security Vulnerability in 4.1.39 #497

Closed dawinter closed 4 years ago

dawinter commented 4 years ago

Current vertx version 3.9.2 defines dependency to netty 4.1.39. Please can you upgrade to netty 4.1.42 due to CVE-2019-16869. Thanks. @vietj

vietj commented 4 years ago

we need to open a CQ for this first

vietj commented 4 years ago

I will do it asap

vietj commented 4 years ago

see https://dev.eclipse.org/ipzilla/show_bug.cgi?id=20926

dawinter commented 4 years ago

Great thanks.