Bumped grpc-netty-shaded to fix CVE-2025-55163 (#11959)

ppatierno · web-flow · commit d311680dba67 · 2025-10-02T19:06:13.000+02:00
Signed-off-by: Paolo Patierno &lt;ppatierno@live.com&gt;
diff --git a/docker-images/artifacts/kafka-thirdparty-libs/4.0.x/pom.xml b/docker-images/artifacts/kafka-thirdparty-libs/4.0.x/pom.xml
@@ -26,7 +26,7 @@
         <opentelemetry.version>1.34.1</opentelemetry.version>
         <opentelemetry-alpha.version>1.34.1-alpha</opentelemetry-alpha.version>
         <opentelemetry.instrumentation.version>1.32.0-alpha</opentelemetry.instrumentation.version>
-        <grpc-netty-shaded.version>1.61.0</grpc-netty-shaded.version>
+        <grpc-netty-shaded.version>1.75.0</grpc-netty-shaded.version>
         <guava.version>32.1.3-jre</guava.version>
         <log4j.version>2.24.3</log4j.version>
     </properties>
diff --git a/docker-images/artifacts/kafka-thirdparty-libs/4.1.x/pom.xml b/docker-images/artifacts/kafka-thirdparty-libs/4.1.x/pom.xml
@@ -26,7 +26,7 @@
         <opentelemetry.version>1.34.1</opentelemetry.version>
         <opentelemetry-alpha.version>1.34.1-alpha</opentelemetry-alpha.version>
         <opentelemetry.instrumentation.version>1.32.0-alpha</opentelemetry.instrumentation.version>
-        <grpc-netty-shaded.version>1.61.0</grpc-netty-shaded.version>
+        <grpc-netty-shaded.version>1.75.0</grpc-netty-shaded.version>
         <guava.version>32.1.3-jre</guava.version>
         <log4j.version>2.24.3</log4j.version>
     </properties>
