From 1e74345554609fc618067578d96fde9e68984f11 Mon Sep 17 00:00:00 2001
From: Krishnananthalingam Tharmigan
 <63336800+TharmiganK@users.noreply.github.com>
Date: Thu, 13 Feb 2025 10:26:06 +0530
Subject: [PATCH 1/3] Update netty version

---
 gradle.properties | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/gradle.properties b/gradle.properties
index 61557e9e3..d786b35c7 100644
--- a/gradle.properties
+++ b/gradle.properties
@@ -4,8 +4,8 @@ version=2.12.5-SNAPSHOT
 ballerinaLangVersion=2201.10.0
 ballerinaTomlParserVersion=1.2.2
 commonsLang3Version=3.12.0
-nettyVersion=4.1.115.Final
-nettyTcnativeVersion=2.0.65.Final
+nettyVersion=4.1.118.Final
+nettyTcnativeVersion=2.0.70.Final
 bouncycastleVersion=1.78
 slf4jVersion=1.7.30
 jakartaXmlBindVersion=4.0.0

From 088b859d16ff5892b86ac88466fd7fe8030acf26 Mon Sep 17 00:00:00 2001
From: Krishnananthalingam Tharmigan
 <63336800+TharmiganK@users.noreply.github.com>
Date: Thu, 13 Feb 2025 10:32:18 +0530
Subject: [PATCH 2/3] Ignore CVE-2025-25193

---
 .trivyignore | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 .trivyignore

diff --git a/.trivyignore b/.trivyignore
new file mode 100644
index 000000000..a9ce49943
--- /dev/null
+++ b/.trivyignore
@@ -0,0 +1 @@
+CVE-2025-25193

From 3f9b324b5f8909f82983b0d0b9a1a450bea55595 Mon Sep 17 00:00:00 2001
From: Krishnananthalingam Tharmigan
 <63336800+TharmiganK@users.noreply.github.com>
Date: Thu, 13 Feb 2025 10:32:46 +0530
Subject: [PATCH 3/3] Update changelog

---
 changelog.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/changelog.md b/changelog.md
index 0cadcdfa7..510b5d831 100644
--- a/changelog.md
+++ b/changelog.md
@@ -4,6 +4,12 @@ This file contains all the notable changes done to the Ballerina HTTP package th
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to
 [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [Unreleased]
+
+### Fixed
+
+- [Address Netty security vulnerabilities: `CVE-2025-24970` and `CVE-2025-25193`](https://github.com/ballerina-platform/ballerina-library/issues/7571)
+
 ## [2.12.4] - 2024-12-10
 
 ### Added