Product Release Advisory - VMware Tanzu GemFire 10.2.0
Product Release Advisory
|
Advisory ID: |
TNZ-2025-0123 |
|
Severity: |
High |
|
Issue Date: |
2025-10-28 |
|
Updated on: |
2025-10-28 |
|
Synopsis |
Bumped multiple dependencies, which resulted in at least 5 CVEs remediated in this release |
Product Version Release Advisory
- VMware Tanzu GemFire 10.2.0
- https://techdocs.broadcom.com/us/en/vmware-tanzu/data-solutions/tanzu-gemfire/10-2/gf/release_notes.html
Security Fixes
This release has the following security fixes, listed by component and area.
|
Component |
Vulnerabilities Resolved |
|
Netty |
CVE-2025-58057 (high) CVE-2025-58056 (high) CVE-2025-55163 (high) |
|
Jetty |
CVE-2025-5115 / BDSA-2025-9581 (medium) CVE-2024-6763 / BDSA-2024-7229 (low) |
History
2025-10-28 Initial vulnerability report published.
Contact
E-mail: [email protected]
VMware Tanzu Security Advisories
https://tanzu.vmware.com/security