ELA-214-1 netty security update

multiple vulnerabilities

2020-02-19
Packagenetty
Version3.2.6.Final-2+deb7u2
Related CVE CVE-2019-20444 CVE-2019-20445 CVE-2020-7238

Several vulnerabilities were discovered in the HTTP server provided by Netty, a Java NIO client/server socket framework:

For Debian 7 Wheezy, these problems have been fixed in version 3.2.6.Final-2+deb7u2.

We recommend that you upgrade your netty packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/