Hi everybody,
The Stewardship SIG has decided to orphan netty. None of our packages
still depend on it.
We were also unable to update the package to newer versions, and the
currently available version has some open security issues associated
with it:
- CVE-2019-20444:
https://bugzilla.redhat.com/show_bug.cgi?id=1798525
- CVE-2019-20445:
https://bugzilla.redhat.com/show_bug.cgi?id=1798511
- CVE-2020-7237:
https://bugzilla.redhat.com/show_bug.cgi?id=1796276
These issues need to be resolved by whomever picks the package up.
Fabio + the Stewardship SIG