Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Issues

Go to all issues
Select view

Select search mode

 
50 of 86

Update all dependencies for Sunflower (R1-2025) fixing CVE-2024-29025

Description

The indirect netty update fixes this HttpPostRequestDecoder OOM vulnerability:

https://github.com/netty/netty/security/advisories/GHSA-5jpm-x58v-624v

CSP Request Details

None

CSP Rejection Details

None

Potential Workaround

None

Checklist

hide

Details

Assignee

Reporter

Priority

Sprint

Development Team

Thor

Release

Sunflower (R1 2025) Bug Fix

RCA Group

TBD

TestRail: Cases

Open TestRail: Cases

TestRail: Runs

Open TestRail: Runs
Created March 14, 2025 at 6:28 PM
Updated yesterday

Activity

Show:

Charlotte Whitt last week

That sounds all good to me

Julian Ladisch last week

Hi Charlotte, GitHub has the policy that the person that has opened the pull request cannot review it. Therefore I cannot review my own pull request. But I can merge it without code review.

Charlotte Whitt last week

Hi and - will one of you be able to do the code review so we can get the ticket closed?

TestRail: Cases
TestRail: Runs