From b85c8bc99406f3a5adc444780bdec76ecb002375 Mon Sep 17 00:00:00 2001
From: Ashi Bhardwaj <abhardwaj@confluent.io>
Date: Wed, 27 Nov 2024 12:01:54 +0530
Subject: [PATCH 1/3] Upgrade netty version to fix CVE

---
 licenses.yaml | 2 +-
 pom.xml       | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/licenses.yaml b/licenses.yaml
index 32227ce03316..ba7d6b00ef8b 100644
--- a/licenses.yaml
+++ b/licenses.yaml
@@ -1249,7 +1249,7 @@ name: Netty
 license_category: binary
 module: java-core
 license_name: Apache License version 2.0
-version: 4.1.108.Final
+version: 4.1.115.Final
 libraries:
   - io.netty: netty-buffer
   - io.netty: netty-codec
diff --git a/pom.xml b/pom.xml
index e5dbde3ac51e..2e69e96d775e 100644
--- a/pom.xml
+++ b/pom.xml
@@ -105,7 +105,7 @@
         <mysql.version>8.2.0</mysql.version>
         <mariadb.version>2.7.3</mariadb.version>
         <netty3.version>3.10.6.Final</netty3.version>
-        <netty4.version>4.1.108.Final</netty4.version>
+        <netty4.version>4.1.115.Final</netty4.version>
         <postgresql.version>42.7.2</postgresql.version>
         <protobuf.version>3.25.5</protobuf.version>
         <resilience4j.version>1.3.1</resilience4j.version>

From 3391334652791ff93ff64cc7c5ee25dd99d6c258 Mon Sep 17 00:00:00 2001
From: Ashi Bhardwaj <ashibhardwaj10@gmail.com>
Date: Mon, 16 Dec 2024 12:59:14 +0530
Subject: [PATCH 2/3] Update licenses.yaml to fix static check

Error:
```

Error: found 2 missing licenses. These licenses are reported, but missing in the registry
druid_module: azure-extensions, groupId: io.netty, artifactId: netty-tcnative-boringssl-static, version: 2.0.69.Final, license: Apache License version 2.0
druid_module: azure-extensions, groupId: io.netty, artifactId: netty-tcnative-classes, version: 2.0.69.Final, license: Apache License version 2.0
```
---
 licenses.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/licenses.yaml b/licenses.yaml
index ba7d6b00ef8b..da5d72d2de86 100644
--- a/licenses.yaml
+++ b/licenses.yaml
@@ -4415,7 +4415,7 @@ name: Netty
 license_category: binary
 module: extensions/druid-azure-extensions
 license_name: Apache License version 2.0
-version: 2.0.65.Final
+version: 2.0.69.Final
 libraries:
   - io.netty: netty-tcnative-boringssl-static
   - io.netty: netty-tcnative-classes

From 15787b6917ac0d95ff8aa686198363335d8228e8 Mon Sep 17 00:00:00 2001
From: Ashi Bhardwaj <abhardwaj@confluent.io>
Date: Sun, 5 Jan 2025 12:54:53 +0530
Subject: [PATCH 3/3] Upgrade netty version to 4.1.116.Final

---
 licenses.yaml | 2 +-
 pom.xml       | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/licenses.yaml b/licenses.yaml
index da5d72d2de86..9b11d2a6e294 100644
--- a/licenses.yaml
+++ b/licenses.yaml
@@ -1249,7 +1249,7 @@ name: Netty
 license_category: binary
 module: java-core
 license_name: Apache License version 2.0
-version: 4.1.115.Final
+version: 4.1.116.Final
 libraries:
   - io.netty: netty-buffer
   - io.netty: netty-codec
diff --git a/pom.xml b/pom.xml
index 2e69e96d775e..b5f48ffbb2a2 100644
--- a/pom.xml
+++ b/pom.xml
@@ -105,7 +105,7 @@
         <mysql.version>8.2.0</mysql.version>
         <mariadb.version>2.7.3</mariadb.version>
         <netty3.version>3.10.6.Final</netty3.version>
-        <netty4.version>4.1.115.Final</netty4.version>
+        <netty4.version>4.1.116.Final</netty4.version>
         <postgresql.version>42.7.2</postgresql.version>
         <protobuf.version>3.25.5</protobuf.version>
         <resilience4j.version>1.3.1</resilience4j.version>