This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help

Head's Up! These forums are read-only. All users and content have migrated. Please join us at community.neo4j.com.

Netty Vulnerability in Neo4j Java Driver

Go to solution
hgueltig
Node

‎01-21-2022 02:01 AM

Hi,

there is an open Vulnerability in the Netty dependency of the current Neo4j Java Driver which is already fixed in newer Netty versions.

An issue in the GitHub project has already been opened by someone:

Other Netty dependencies like netty-transport, netty-buffer and so on are affected too.

We are also waiting for this vulnerability to be closed, is there a timeline when this dependency will be updated?

Thanks

Reply
1 ACCEPTED SOLUTION

Go to solution
dmitriy_tverdia
Neo4j
Neo4j

‎01-26-2022 09:27 AM

Hi. We will aim to get a new version released by the end of the week.

View solution in original post

Reply
3 REPLIES 3

Go to solution
t_gertler
Node Link

‎01-26-2022 02:45 AM

Hi,

I'm also waiting for this. I would be nice to have a timeline information.

Cheers,
Thomas

0 Kudos
Reply

Go to solution
dmitriy_tverdia
Neo4j
Neo4j

‎01-26-2022 09:27 AM

Hi. We will aim to get a new version released by the end of the week.

Reply
Nodes 2022
Nodes
NODES 2022, Neo4j Online Education Summit

All the sessions of the conference are now available online

Watch replays