# netty-4.1.114-1.1 on GA media Announcement ID: openSUSE-SU-2024:14442-1 Rating: moderate Cross-References: * CVE-2021-21409 * CVE-2021-37136 * CVE-2021-37137 * CVE-2022-24823 * CVE-2022-41881 * CVE-2022-41915 * CVE-2023-34462 * CVE-2023-44487 * CVE-2024-29025 CVSS scores: * CVE-2021-21409 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2021-37136 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2021-37137 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2022-24823 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2022-41881 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2022-41915 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2023-34462 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-44487 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-29025 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Tumbleweed An update that solves 9 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the netty-4.1.114-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * netty 4.1.114-1.1 * netty-javadoc 4.1.114-1.1 * netty-poms 4.1.114-1.1 ## References: * https://www.suse.com/security/cve/CVE-2021-21409.html * https://www.suse.com/security/cve/CVE-2021-37136.html * https://www.suse.com/security/cve/CVE-2021-37137.html * https://www.suse.com/security/cve/CVE-2022-24823.html * https://www.suse.com/security/cve/CVE-2022-41881.html * https://www.suse.com/security/cve/CVE-2022-41915.html * https://www.suse.com/security/cve/CVE-2023-34462.html * https://www.suse.com/security/cve/CVE-2023-44487.html * https://www.suse.com/security/cve/CVE-2024-29025.html