Beltran created ZOOKEEPER-4700: ---------------------------------- Summary: Update Jetty for fixing CVE-2023-26048 and CVE-2023-26049 Key: ZOOKEEPER-4700 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4700 Project: ZooKeeper Issue Type: Task Affects Versions: 3.8.1 Reporter: Beltran
The Zookeeper latest version (v3.8.1) includes jetty-server-9.4.49.v20220914.jar that includes 2 vulnerabilities reported by the scanners: CVE-2023-26048 and CVE-2023-26049. The goal is to upgrade jetty to 9.4.51. This dependency was already upgraded in Kafka KAFKA-14983. -- This message was sent by Atlassian Jira (v8.20.10#820010)