Uploaded image for project: 'ZooKeeper'
  1. ZooKeeper
  2. ZOOKEEPER-4599

Upgrade Jetty to avoid CVE-2022-2048

VotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Task
    • Status: Closed
    • Major
    • Resolution: Done
    • 3.6.3, 3.8.0, 3.7.1
    • 3.9.0, 3.7.2, 3.8.2
    • None

    Description

      CVE ID Type Severity Packages Package Version CVSS Fix Status
      CVE-2022-2048 java high org.eclipse.jetty_jetty-io 9.4.43.v20210629 7.5 fixed in 11.0.9, 10.0.9, 9.4.47

      Our security scan detected the above vulnerabilities

      upgrade to correct versions for fixing vulnerabilities

      Attachments

        Issue Links

        is a clone of

        Bug - A problem which impairs or prevents the functions of the product. ZOOKEEPER-4439 Upgrade zk vulnerabilities

        • Major - Major loss of function.
        • Open
        relates to

        Bug - A problem which impairs or prevents the functions of the product. ZOOKEEPER-4532 CVE-2022-2296-Upgrade jetty to 9.4.46.v20220331

        • Major - Major loss of function.
        • Resolved

        Activity
          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            symat Mate Szalay-Beko
            shivakumar Shivakumar
            Votes:
            1 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment