[Geoserver-devel] [JIRA] (GEOS-11030) Update jetty-server to 9.4.51.v20230217

Fri, 16 Jun 2023 00:32:07 -0700 

Jody Garnett ( 
https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3Ae422bb7f-4808-47e3-837f-13db0e6681e3
 ) *created* an issue

GeoServer ( 
https://osgeo-org.atlassian.net/browse/GEOS?atlOrigin=eyJpIjoiMGFkMWM1NDA1MzU3NDM5YjkyZDQ0OTk4YjBiNmUyOTQiLCJwIjoiaiJ9
 ) / Task ( 
https://osgeo-org.atlassian.net/browse/GEOS-11030?atlOrigin=eyJpIjoiMGFkMWM1NDA1MzU3NDM5YjkyZDQ0OTk4YjBiNmUyOTQiLCJwIjoiaiJ9
 ) GEOS-11030 ( 
https://osgeo-org.atlassian.net/browse/GEOS-11030?atlOrigin=eyJpIjoiMGFkMWM1NDA1MzU3NDM5YjkyZDQ0OTk4YjBiNmUyOTQiLCJwIjoiaiJ9
 ) Update jetty-server to 9.4.51.v20230217 ( 
https://osgeo-org.atlassian.net/browse/GEOS-11030?atlOrigin=eyJpIjoiMGFkMWM1NDA1MzU3NDM5YjkyZDQ0OTk4YjBiNmUyOTQiLCJwIjoiaiJ9
 )

Issue Type: Task Assignee: Unassigned Components: Vulnerability, web-app 
Created: 16/Jun/23 9:31 AM Priority: Medium Reporter: Jody Garnett ( 
https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3Ae422bb7f-4808-47e3-837f-13db0e6681e3
 )

>From jetty-server release notes:

* #9352 ( https://redirect.github.com/eclipse/jetty.project/issues/9352 ) - 
Update / Fix CookieCutter
* #9345 ( https://redirect.github.com/eclipse/jetty.project/issues/9345 ) - 
Backport Multipart Fix for CVE-2023-26048 ( 
https://github.com/advisories/GHSA-qw69-rqj8-6qw8 )
* #9352 ( https://redirect.github.com/eclipse/jetty.project/issues/9352 ) - 
Backport Cookie Parsing Fix for CVE-2023-26049 ( 
https://github.com/advisories/GHSA-p26g-97m4-6q7c )

( 
https://osgeo-org.atlassian.net/browse/GEOS-11030#add-comment?atlOrigin=eyJpIjoiMGFkMWM1NDA1MzU3NDM5YjkyZDQ0OTk4YjBiNmUyOTQiLCJwIjoiaiJ9
 ) Add Comment ( 
https://osgeo-org.atlassian.net/browse/GEOS-11030#add-comment?atlOrigin=eyJpIjoiMGFkMWM1NDA1MzU3NDM5YjkyZDQ0OTk4YjBiNmUyOTQiLCJwIjoiaiJ9
 )

Get Jira notifications on your phone! Download the Jira Cloud app for Android ( 
https://play.google.com/store/apps/details?id=com.atlassian.android.jira.core&referrer=utm_source%3DNotificationLink%26utm_medium%3DEmail
 ) or iOS ( 
https://itunes.apple.com/app/apple-store/id1006972087?pt=696495&ct=EmailNotificationLink&mt=8
 ) This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100226- 
sha1:d46780b )
_______________________________________________
Geoserver-devel mailing list
Geoserver-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geoserver-devel














    











					Reply via email to