Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-6557

CVE-2023-44487 Upgrade Netty to 4.1.100.Final

    XMLWordPrintable

Details

    Description

      In WildFly Core we use `io.netty` as a purely test suite dependency, it is not released with the project itself. That means the WildFly Core component is not affected by this CVE at all. The main upgrading motivation is just to help security scanners avoid flagging the project with this CVE.

      https://github.com/netty/netty/releases/tag/netty-4.1.100.Final

      Fixes https://access.redhat.com/security/cve/CVE-2023-44487

      Attachments

        Issue Links

          Activity

            People

              yborgess1@redhat.com Yeray Borges Santana
              yborgess1@redhat.com Yeray Borges Santana
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: