Skip to content

fixing cve#43

Merged
matthew1001 merged 2 commits into
kaleido-besu-release-26.2.0from
cve-fix
Apr 22, 2026
Merged

fixing cve#43
matthew1001 merged 2 commits into
kaleido-besu-release-26.2.0from
cve-fix

Conversation

@Chengxuan

@Chengxuan Chengxuan commented Apr 22, 2026

Copy link
Copy Markdown

for https://github.com/kaleido-io/kaleido-planning/issues/6954

| kaleido-node-besu:26.4.1-r1339                   | CVE-2025-67030      | HIGH     | 8.8   | NVD        | org.codehaus.plexus:plexus-utils | 4.0.3, 3.6.1                | org.codehaus.plexus:plexus-utils: Plexus-utils: Directory Traversal in extrac... | NO     | Java                         |
| kaleido-node-besu:26.4.1-r1339                   | CVE-2026-33871      | HIGH     | 7.5   | NVD        | io.netty:netty-codec-http2       | 4.1.132.Final, 4.2.11.Final | netty: Netty: Denial of Service via HTTP/2 CONTINUATION frame flood              | NO     | Java                         |

Chengxuan and others added 2 commits April 22, 2026 14:29
@Chengxuan
fixing cve
6630b82 
Signed-off-by: Chengxuan Xing <chengxuan.xing@kaleido.io>
@matthew1001
Update verification meta-data
fbe7315 
Signed-off-by: Matthew Whitehead <matthew.whitehead@kaleido.io>
@matthew1001 matthew1001 merged commit 4388eef into kaleido-besu-release-26.2.0 Apr 22, 2026
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jimthematrix jimthematrix jimthematrix approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Chengxuan @jimthematrix @matthew1001