[IGNITE-9340] Update Jetty version in Apache Ignite (ignite-rest-http) - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Task
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 2.6
Fix Version/s: 2.7
Component/s: rest
Labels:
- important
- vulnerability

Flags:

Important

Description

log4j-core-2.8.1.jar 1 Vulnerability, 1 High: CVE-2017-5645 - update done in ~~IGNITE-9035~~

jetty-util-9.2.11.v20150529.jar 2 Vulnerabilities, 2 High: CVE-2016-4800, CVE-2017-9735
jetty-util-9.2.11.v20150529.jar 2 Vulnerabilities, 2 High: CVE-2016-4800, CVE-2017-9735
jetty-server-9.2.11.v20150529.jar 2 Vulnerabilities, 1 High: CVE-2016-4800, 1 Medium: CVE-2017-7658

Attachments

Issue Links

relates to

IGNITE-8984 Ignite 2.5 - Vulnerabilities

Resolved

IGNITE-9035 Update log4j 2x version in Apache Ignite

Resolved

Activity

People

Assignee:: Dmitry Pavlov

Reporter:: Dmitry Pavlov

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 21/Aug/18 12:15

Updated:: 22/Apr/20 08:48

Resolved:: 23/Aug/18 14:02