Uploaded image for project: 'Kafka'
  1. Kafka
  2. KAFKA-12985

CVE-2021-28169 - Upgrade jetty to 9.4.42

    XMLWordPrintableJSON

Details

    • Task
    • Status: Resolved
    • Minor
    • Resolution: Fixed
    • None
    • 2.7.2, 2.8.1, 3.0.0
    • security
    • None

    Description

      CVE-2021-28169 vulnerability affects Jetty versions up to 9.4.40. For more information see https://nvd.nist.gov/vuln/detail/CVE-2021-28169

      Upgrading to Jetty version 9.4.41 should address this issue (https://github.com/eclipse/jetty.project/security/advisories/GHSA-gwcr-j4wh-j3cq).

      Attachments

        Issue Links

          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. KAFKA-13048 Update vulnerable dependencies in 2.8.0

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link GitHub Pull Request #10919

          Activity

            People

              dongjin Dongjin Lee
              dongjin Dongjin Lee
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: