Skip to content

[SECURITY] Update io.netty:netty-codec-http #345

Description

@edthri

Describe the security issue
Aikido indicates that io.netty:netty-codec-http version 4.1.119 is affected by 10 vulnerabilities:

CVE-2026-42581
CVE-2026-42584
CVE-2025-58056
CVE-2026-42585
CVE-2026-42587
CVE-2026-33870
CVE-2026-42580
CVE-2025-67735
CVE-2026-50020
CVE-2026-41417

Vulnerability Location
This is a third party library.

Environment (please complete the following information if it is applicable to the issue)
Every environment. Vulnerable library bundled with software.

Suggested remediation
Update to:
io.netty:netty-codec-http:4.2.16.Final
or
io.netty:netty-codec-http:4.1.136.Final

Additional context

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions