Hello,

Kafka 3.2.3 have 3 high severity CVEs:

CVE-2022-41881 - netty-codec-4.1.78.Final.jar                     Resolved: 
4.1.86, unresolved
CVE-2022-42003 - jackson-databind-2.13.3.jar                     Resolved: 
2.14.0, unresolved
CVE-2022-42004 - jackson-databind-2.13.3.jar                     Resolved: 
2.13.4, kafka 3.4

Are there any plans to resolve these issues on 3.2.x branch?
Thank you.

Reply via email to