Bump netty-codec-http from 4.1.85.Final to 4.1.86.Final in /fhir-parent (#4124)

dependabot[bot] · lmsurpre · web-flow · commit 52b686f12a1c · 2022-12-13T08:56:02.000-05:00
* Bump netty-codec-http from 4.1.85.Final to 4.1.86.Final in /fhir-parent Bumps [netty-codec-http](https://github.com/netty/netty) from 4.1.85.Final to 4.1.86.Final. - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.85.Final...netty-4.1.86.Final) --- updated-dependencies: - dependency-name: io.netty:netty-codec-http dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> * bump other netty modules too Signed-off-by: Lee Surprenant <lmsurpre@merative.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Lee Surprenant <lmsurpre@merative.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Lee Surprenant <lmsurpre@merative.com>
diff --git a/fhir-parent/pom.xml b/fhir-parent/pom.xml
@@ -615,22 +615,22 @@
                 <!-- [CVE-2021-37137] SnappyFrameDecoder doesn't restrict chunk length any may buffer skippable chunks in an unnecessary way; patched in 4.1.68.Final -->
                 <groupId>io.netty</groupId>
                 <artifactId>netty-all</artifactId>
-                <version>4.1.85.Final</version>
+                <version>4.1.86.Final</version>
             </dependency>
             <dependency>
                 <!-- Used in com.amazonaws:aws-java-sdk which is brought in by com.ibm.stocator:stocator (but marked provided by default) -->
                 <!-- [CVE-2021-37136] Bzip2Decoder doesn't allow setting size restrictions for decompressed data; patched in 4.1.68.Final -->
                 <!-- [CVE-2021-37137] SnappyFrameDecoder doesn't restrict chunk length any may buffer skippable chunks in an unnecessary way; patched in 4.1.68.Final -->
                 <groupId>io.netty</groupId>
                 <artifactId>netty-codec-http</artifactId>
-                <version>4.1.85.Final</version>
+                <version>4.1.86.Final</version>
             </dependency>
             <dependency>
                 <!-- Used in com.datastax.oss:java-driver-core -->
                 <!-- [CVE-2022-24823] CWE-378: Creation of Temporary File With Insecure Permissions; patched in 4.1.77.Final -->
                 <groupId>io.netty</groupId>
                 <artifactId>netty-handler</artifactId>
-                <version>4.1.85.Final</version>
+                <version>4.1.86.Final</version>
             </dependency>
             <dependency>
                 <!--  [CVE-2020-8908] A temp directory creation vulnerability exists in all versions of Guava, addressed in latest versions -->
