[
https://issues.apache.org/jira/browse/HADOOP-19806?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Steve Loughran resolved HADOOP-19806.
-------------------------------------
Fix Version/s: 3.4.3
Resolution: Duplicate
Just verified that it's fixed in 9.4.57.v20241219; which is what branch-3.4 is
in. 3.5 is a head because it's also moved jersey on.
[~isaacpe15] I'm cutting a new 3.4.3 RC this weekend -please help validate it
in your environment.
> CVE-2024-6763 Bump Jetty
> ------------------------
>
> Key: HADOOP-19806
> URL: https://issues.apache.org/jira/browse/HADOOP-19806
> Project: Hadoop Common
> Issue Type: Wish
> Components: common
> Affects Versions: 3.5.0, 3.4.2
> Reporter: Isaac
> Priority: Minor
> Fix For: 3.4.3
>
>
> There is a vulnerability in the org.eclipse.jetty:jetty-http library
> [https://nvd.nist.gov/vuln/detail/CVE-2024-6763]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
