High severity CVEs: Kafka 3.2.3

Stadnikov, Anton Mon, 03 Apr 2023 16:58:22 -0700

Hello,

Kafka 3.2.3 have 3 high severity CVEs:


CVE-2022-41881 - netty-codec-4.1.78.Final.jar                     Resolved: 
4.1.86, unresolved
CVE-2022-42003 - jackson-databind-2.13.3.jar                     Resolved: 
2.14.0, unresolved
CVE-2022-42004 - jackson-databind-2.13.3.jar                     Resolved: 
2.13.4, kafka 3.4

Are there any plans to resolve these issues on 3.2.x branch?
Thank you.

High severity CVEs: Kafka 3.2.3

Reply via email to