Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency io.projectreactor.ipc:reactor-netty to v0.7.1.RELEASE - autoclosed #515

Closed
wants to merge 1 commit into from
Closed

Update dependency io.projectreactor.ipc:reactor-netty to v0.7.1.RELEASE - autoclosed #515

wants to merge 1 commit into from

Conversation

mend-for-jackfan.us.kg[bot]
Copy link

This PR contains the following updates:

Package Update Change
io.projectreactor.ipc:reactor-netty patch 0.7.0.RELEASE -> 0.7.1.RELEASE

By merging this PR, the below issues will be automatically resolved and closed:

Severity CVSS Score CVE GitHub Issue
Medium 5.9 CVE-2020-5404 #106
Medium 5.5 CVE-2021-21290 #149

By merging this PR, the below issues will be automatically resolved and closed:

Severity CVSS Score CVE GitHub Issue
Medium 6.5 CVE-2021-43797 #467

By merging this PR, the below issues will be automatically resolved and closed:

Severity CVSS Score CVE GitHub Issue
High 7.5 CVE-2021-37136 #226
High 7.5 CVE-2021-37137 #227

By merging this PR, the below issues will be automatically resolved and closed:

Severity CVSS Score CVE GitHub Issue
Medium 6.5 CVE-2021-43797 #467
Medium 6.5 CVE-2021-43797 #467
Medium 5.9 CVE-2021-21295 #145
Medium 5.5 CVE-2021-21290 #149

Release Notes

reactor/reactor-netty

v0.7.1.RELEASE

This is the second release of Reactor-Netty 0.7, part of Bismuth-SR3 Release Train.

This is a recommended update for all Reactor Netty users.

✨ New features and improvements

  • Use HttpClientCodec/HttpServerCodec (cce4d57)
  • Increase the default timeout, introduce a new method with timeout (#​179)
  • Separate UdpClient/UdpServer (#​137)

🪲 Bug fixes

  • Fixed a memory leak with keep-alive connections (#​176, 21fd7a9)
  • Prevent unwanted reverse DNS lookup calls (1bf036a)
  • Leave connection gracefully finishes on http 40x, 50x, 301/302 (9eb3a10)
  • Fix possible ByteBuf leaks (f1d8576)
  • Release buffers at fromPath level (6269251, f34df23)
  • Drop out of sequence http client frames when server close (#​186)
  • Remove the special handling of status codes 204/304 (116466f)
  • Do not replace the HttpServerCodec (ea736c5)
  • Do not set content length when HEAD request (#​171)

📖 Documentation, Tests and Build

👍 Thanks to the following contributors that also participated to this release

@​lhotari

  • If you want to rebase/retry this PR, click this checkbox.

@mend-for-jackfan.us.kg mend-for-jackfan.us.kg bot added the security fix Security fix generated by WhiteSource label Apr 18, 2022
@mend-for-jackfan.us.kg mend-for-jackfan.us.kg bot changed the title Update dependency io.projectreactor.ipc:reactor-netty to v0.7.1.RELEASE Update dependency io.projectreactor.ipc:reactor-netty to v0.7.1.RELEASE - autoclosed Apr 25, 2022
@mend-for-jackfan.us.kg mend-for-jackfan.us.kg bot deleted the whitesource-remediate/io.projectreactor.ipc-reactor-netty-0.x branch April 25, 2022 03:40
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by WhiteSource
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants