nosql-java-sdk icon indicating copy to clipboard operation
nosql-java-sdk copied to clipboard
verified publisher icon oracle

sdk vulnerable to netty CVEs

Open matt-j-martin-oracle-com opened this issue 4 months ago • 0 comments

Please update the netty dependencies to 4.1.127 or greater to address the following CVEs

CVE-2025-55163 https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4 is on package netty-codec-http CVE-2025-58057 https://github.com/netty/netty/security/advisories/GHSA-3p8m-j85q-pgmj is on packages netty-codec and netty-codec-compression

matt-j-martin-oracle-com avatar Sep 26 '25 21:09 matt-j-martin-oracle-com