[
https://issues.apache.org/jira/browse/HADOOP-19225?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17865425#comment-17865425
]
Palakur Eshwitha Sai commented on HADOOP-19225:
-----------------------------------------------
Sure, is it a possible solution to update the jetty version in hadoop-project
pom and exclude the dependency from solr so that it uses the updated jetty
version from the project pom?
> Upgrade to jetty 9.4.55 due to CVE
> ----------------------------------
>
> Key: HADOOP-19225
> URL: https://issues.apache.org/jira/browse/HADOOP-19225
> Project: Hadoop Common
> Issue Type: Improvement
> Components: build
> Reporter: Palakur Eshwitha Sai
> Assignee: Palakur Eshwitha Sai
> Priority: Major
> Labels: pull-request-available
>
> Upgrade to jetty 9.4.55 due to
> [CVE-2024-22201|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22201]
> [CVE-2023-44487|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44487]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
