!44 [sec] Resolve CVE-2022-41881

From: @sundapeng001 Reviewed-by: @hu-zongtang Signed-off-by: @hu-zongtang
2023-09-01 07:32:21 +00:00 · 2023-09-01 07:32:21 +00:00 · f024f7ce06
commit f024f7ce06
parent 7d3fb8ffe4 5567d5b2bb
2 changed files with 18 additions and 1 deletions
--- a/0002-CVE-2022-41881.patch
+++ b/0002-CVE-2022-41881.patch
@ -0,0 +1,13 @@
+diff --git a/gradle/dependencies.gradle b/gradle/dependencies.gradle
+index 8dcf7af2f2..7b7974b5aa 100644
+--- a/gradle/dependencies.gradle
+++ b/gradle/dependencies.gradle
+@@ -100,7 +100,7 @@ versions += [
+   mavenArtifact: "3.8.1",
+   metrics: "2.2.0",
+   mockito: "3.6.0",
+-  netty: "4.1.73.Final",
+  netty: "4.1.86.Final",
+   owaspDepCheckPlugin: "6.0.3",
+   powermock: "2.0.9",
+   reflections: "0.9.12",
--- a/kafka.spec
+++ b/kafka.spec
@ -4,7 +4,7 @@

 Name: kafka
 Version: 2.8.2
-Release: 1
+Release: 2
 Summary: A Distributed Streaming Platform.

 License: Apache-2.0
@ -13,6 +13,7 @@ Source1: https://mirrors.huaweicloud.com/gradle/gradle-6.8.1-all.zip
 Source2: kafka.service
 Source3: gradle-wrapper.jar
 Patch0: 0001-adopt-huaweimaven.patch
+Patch1: 0002-CVE-2022-41881.patch

 BuildRequires: systemd java-1.8.0-openjdk-devel
 Provides: kafka = %{version}
@ -64,6 +65,9 @@ cp -pr licenses/*   $RPM_BUILD_ROOT%{kafka_home}/licenses
 rm -rf %{buildroot}

 %changelog
+* Wed Aug 30 2023 sundapeng <sundapeng_yewu@cmss.chinamobile.com> - 2.8.2-2
+- fix CVE-2022-41881
+
 * Sat Sep 24 2022 xiexing <xiexing4@hisilicon.com> - 2.8.2-1
 - fix CVE-2022-34917