Ivo Dujmovic created ZOOKEEPER-4627: ---------------------------------------
Summary: High CVE-2022-2048 in jetty-*-9.4.46.v20220331.jar fixed in 9.4.47 Key: ZOOKEEPER-4627 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4627 Project: ZooKeeper Issue Type: Task Components: security Affects Versions: 3.7.1, 3.8.0, 3.6.2, 3.5.10 Reporter: Ivo Dujmovic HIgh jetty CVE [https://nvd.nist.gov/vuln/detail/CVE-2022-2048] seems to be fixed in 9.4.47 The last ticket requesting update to jetty I found was https://issues.apache.org/jira/browse/ZOOKEEPER-4337 , but zk 3.5.10 currently is using 9.4.46.v20220331.jar -- This message was sent by Atlassian Jira (v8.20.10#820010)