From 4cba78cdb611c20c87145fbf41786e332fed6119 Mon Sep 17 00:00:00 2001
From: Valery Kharseko <vharseko@3a-systems.ru>
Date: Tue, 9 Jun 2026 10:50:48 +0300
Subject: [PATCH] CVE-2026-45536 CVE-2026-45416 CVE-2026-44249 Netty:
 Unix-socket fd receive leaks descriptors when peer sends two at once Netty:
 SNI handler pre-allocates up to 16 MiB from nine attacker bytes Netty has an
 IPv6 Subnet Filter Bypass via Incorrect Comparator Masking

---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index 7b8e96133..cb3c42254 100644
--- a/pom.xml
+++ b/pom.xml
@@ -884,7 +884,7 @@
             <dependency>
                 <groupId>io.netty</groupId>
                 <artifactId>netty-bom</artifactId>
-                <version>4.1.132.Final</version>
+                <version>4.2.15.Final</version>
                 <type>pom</type>
                 <scope>import</scope>
             </dependency>