(bookkeeper) 25/25: Update Jetty dependency. (#4141)

Wed, 06 Dec 2023 20:19:10 -0800 

This is an automated email from the ASF dual-hosted git repository.

yong pushed a commit to branch branch-4.15
in repository https://gitbox.apache.org/repos/asf/bookkeeper.git

commit 58e53f72a1a8974c35392c17c8eb53a92fae230d
Author: Anup Ghatage <[email protected]>
AuthorDate: Sun Dec 3 17:55:00 2023 -0800

    Update Jetty dependency. (#4141)
    
    9.4.51 needs to be updated due to
    - https://nvd.nist.gov/vuln/detail/CVE-2023-40167
    - https://security.snyk.io/vuln/SNYK-JAVA-ORGECLIPSEJETTY-5958847
    
    Co-authored-by: Anup Ghatage <[email protected]>
    (cherry picked from commit c1b7f76d77267c0ac10e8a0e80a2890191aaae84)
---
 bookkeeper-dist/src/main/resources/LICENSE-all.bin.txt   | 14 +++++++-------
 .../src/main/resources/LICENSE-server.bin.txt            | 14 +++++++-------
 bookkeeper-dist/src/main/resources/NOTICE-all.bin.txt    | 16 ++++++++--------
 bookkeeper-dist/src/main/resources/NOTICE-server.bin.txt | 16 ++++++++--------
 pom.xml                                                  |  2 +-
 5 files changed, 31 insertions(+), 31 deletions(-)

diff --git a/bookkeeper-dist/src/main/resources/LICENSE-all.bin.txt 
b/bookkeeper-dist/src/main/resources/LICENSE-all.bin.txt
index e2f77a9691..85d8a50757 100644
--- a/bookkeeper-dist/src/main/resources/LICENSE-all.bin.txt
+++ b/bookkeeper-dist/src/main/resources/LICENSE-all.bin.txt
@@ -257,13 +257,13 @@ Apache Software License, Version 2.
 - lib/org.apache.zookeeper-zookeeper-3.8.0.jar [21]
 - lib/org.apache.zookeeper-zookeeper-jute-3.8.0.jar [21]
 - lib/org.apache.zookeeper-zookeeper-3.8.0-tests.jar [21]
-- lib/org.eclipse.jetty-jetty-http-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-io-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-security-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-server-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-servlet-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-util-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-util-ajax-9.4.51.v20230217.jar [22]
+- lib/org.eclipse.jetty-jetty-http-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-io-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-security-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-server-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-servlet-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-util-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-util-ajax-9.4.53.v20231009.jar [22]
 - lib/org.rocksdb-rocksdbjni-6.29.4.1.jar [23]
 - lib/com.beust-jcommander-1.82.jar [24]
 - lib/com.yahoo.datasketches-memory-0.8.3.jar [25]
diff --git a/bookkeeper-dist/src/main/resources/LICENSE-server.bin.txt 
b/bookkeeper-dist/src/main/resources/LICENSE-server.bin.txt
index 6cb44bb48b..85ce30d421 100644
--- a/bookkeeper-dist/src/main/resources/LICENSE-server.bin.txt
+++ b/bookkeeper-dist/src/main/resources/LICENSE-server.bin.txt
@@ -257,13 +257,13 @@ Apache Software License, Version 2.
 - lib/org.apache.zookeeper-zookeeper-3.8.0.jar [21]
 - lib/org.apache.zookeeper-zookeeper-jute-3.8.0.jar [21]
 - lib/org.apache.zookeeper-zookeeper-3.8.0-tests.jar [21]
-- lib/org.eclipse.jetty-jetty-http-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-io-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-security-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-server-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-servlet-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-util-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-util-ajax-9.4.51.v20230217.jar [22]
+- lib/org.eclipse.jetty-jetty-http-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-io-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-security-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-server-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-servlet-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-util-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-util-ajax-9.4.53.v20231009.jar [22]
 - lib/org.rocksdb-rocksdbjni-6.29.4.1.jar [23]
 - lib/com.beust-jcommander-1.82.jar [24]
 - lib/com.yahoo.datasketches-memory-0.8.3.jar [25]
diff --git a/bookkeeper-dist/src/main/resources/NOTICE-all.bin.txt 
b/bookkeeper-dist/src/main/resources/NOTICE-all.bin.txt
index 1f950a02c1..0eb72ef7d5 100644
--- a/bookkeeper-dist/src/main/resources/NOTICE-all.bin.txt
+++ b/bookkeeper-dist/src/main/resources/NOTICE-all.bin.txt
@@ -86,13 +86,13 @@ SoundCloud Ltd. (http://soundcloud.com/).
 This product includes software developed as part of the
 Ocelli project by Netflix Inc. (https://github.com/Netflix/ocelli/).
 
------------------------------------------------------------------------------------
-- lib/org.eclipse.jetty-jetty-http-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-io-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-security-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-server-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-servlet-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-util-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-util-ajax-9.4.51.v20230217.jar
+- lib/org.eclipse.jetty-jetty-http-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-io-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-security-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-server-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-servlet-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-util-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-util-ajax-9.4.53.v20231009.jar
 
 ==============================================================
  Jetty Web Container
@@ -114,7 +114,7 @@ Jetty is dual licensed under both
 
 Jetty may be distributed under either license.
 
-lib/org.eclipse.jetty-jetty-util-9.4.51.v20230217.jar bundles UnixCrypt
+lib/org.eclipse.jetty-jetty-util-9.4.53.v20231009.jar bundles UnixCrypt
 
 The UnixCrypt.java code implements the one way cryptography used by
 Unix systems for simple password protection.  Copyright 1996 Aki Yoshida,
diff --git a/bookkeeper-dist/src/main/resources/NOTICE-server.bin.txt 
b/bookkeeper-dist/src/main/resources/NOTICE-server.bin.txt
index e5be2d9134..b0da24fa7b 100644
--- a/bookkeeper-dist/src/main/resources/NOTICE-server.bin.txt
+++ b/bookkeeper-dist/src/main/resources/NOTICE-server.bin.txt
@@ -68,13 +68,13 @@ SoundCloud Ltd. (http://soundcloud.com/).
 This product includes software developed as part of the
 Ocelli project by Netflix Inc. (https://github.com/Netflix/ocelli/).
 
------------------------------------------------------------------------------------
-- lib/org.eclipse.jetty-jetty-http-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-io-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-security-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-server-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-servlet-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-util-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-util-ajax-9.4.51.v20230217.jar
+- lib/org.eclipse.jetty-jetty-http-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-io-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-security-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-server-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-servlet-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-util-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-util-ajax-9.4.53.v20231009.jar
 
 ==============================================================
  Jetty Web Container
@@ -96,7 +96,7 @@ Jetty is dual licensed under both
 
 Jetty may be distributed under either license.
 
-lib/org.eclipse.jetty-jetty-util-9.4.51.v20230217.jar bundles UnixCrypt
+lib/org.eclipse.jetty-jetty-util-9.4.53.v20231009.jar bundles UnixCrypt
 
 The UnixCrypt.java code implements the one way cryptography used by
 Unix systems for simple password protection.  Copyright 1996 Aki Yoshida,
diff --git a/pom.xml b/pom.xml
index b619f5bc06..7be46b41b4 100644
--- a/pom.xml
+++ b/pom.xml
@@ -143,7 +143,7 @@
     <hdrhistogram.version>2.1.10</hdrhistogram.version>
     <jackson.version>2.13.4.20221013</jackson.version>
     <jcommander.version>1.82</jcommander.version>
-    <jetty.version>9.4.51.v20230217</jetty.version>
+    <jetty.version>9.4.53.v20231009</jetty.version>
     <jmh.version>1.19</jmh.version>
     <jmock.version>2.8.2</jmock.version>
     <jsoup.version>1.14.3</jsoup.version>

Reply via email to