Uploaded image for project: 'Kafka'
  1. Kafka
  2. KAFKA-12655

CVE-2021-28165 - Upgrade jetty to 9.4.39

Agile BoardAttach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.7.0, 2.6.1
    • Fix Version/s: 2.8.0, 2.7.1, 2.6.2, 3.0.0
    • Component/s: None
    • Labels:

      Description

      CVE-2021-28165 vulnerability affects Jetty versions up to 9.4.38. For more information see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28165 

      Upgrading to Jetty version 9.4.39 should address this issue (https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.39.v20210325).

        Attachments

          Activity

            People

            • Assignee:
              dongjin Dongjin Lee
              Reporter:
              edwin092 Edwin Hobor

              Dates

              • Created:
                Updated:
                Resolved:

                Issue deployment