Skip to content

Upgrade gRPC to 1.75.0 to resolve CVE#472

Merged
smcvb merged 1 commit intoconnector-2024.2.xfrom
dependency-upgrade/grpc-1.75.0-upgrade
Jan 12, 2026
Merged

Upgrade gRPC to 1.75.0 to resolve CVE#472
smcvb merged 1 commit intoconnector-2024.2.xfrom
dependency-upgrade/grpc-1.75.0-upgrade

Conversation

@smcvb
Copy link
Copy Markdown
Contributor

@smcvb smcvb commented Jan 12, 2026

This PR upgrades the gRPC version to 1.75.0.
In doing so, we mitigate CVE-2025-55163.

@smcvb
Upgrade gRPC to 1.75.0 to resolve CVE
5cac67d 
Upgrade gRPC to 1.75.0 to resolve CVE. In doing so, we mitigate
CVE-2025-55163.
@smcvb smcvb requested a review from abuijze January 12, 2026 11:16
@smcvb smcvb self-assigned this Jan 12, 2026
@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud bot commented Jan 12, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@smcvb smcvb merged commit 8596bc1 into connector-2024.2.x Jan 12, 2026
9 of 10 checks passed
@smcvb smcvb deleted the dependency-upgrade/grpc-1.75.0-upgrade branch January 12, 2026 12:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@MateuszNaKodach MateuszNaKodach MateuszNaKodach approved these changes

@abuijze abuijze Awaiting requested review from abuijze

Assignees

@smcvb smcvb

Labels

CVSS: Medium Priority 1: Must Type: Dependency Upgrade

Projects

None yet

Milestone

Axon Server Connector for Java 2024.2.5

Development

Successfully merging this pull request may close these issues.

2 participants

@smcvb @MateuszNaKodach