[CXF-9068] Vulnerability (Denial of Service) in jetty server - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Information Provided
Affects Version/s: 4.0.5
Fix Version/s: None
Component/s: Transports
Labels:
None

Estimated Complexity:
Unknown

Description

Hello,

snyk.io has discovered a vulnerability in Jetty Server (https://security.snyk.io/vuln/SNYK-JAVA-ORGECLIPSEJETTY-8186142 ), which was introduced via org.apache.cxf:cxf-rt-transports-http-jetty@4.0.5

Is it possible to fix or mitigate this issue?

thanks

Milan Siebenbürger

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Milan Siebenbürger

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 16/Oct/24 08:02

Updated:: 03/Dec/24 13:50

Resolved:: 16/Oct/24 12:10