[
https://issues.apache.org/jira/browse/GEODE-331?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15008985#comment-15008985
]
ASF GitHub Bot commented on GEODE-331:
--------------------------------------
GitHub user jinmeiliao opened a pull request:
https://github.com/apache/incubator-geode/pull/35
GEODE-331: Update Jetty version in order to avoid security vulnerability
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/jinmeiliao/incubator-geode feature/GEODE-331
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/incubator-geode/pull/35.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #35
----
commit 6df4b10b3b5c5a9b6fba397e66f198973f5d55e7
Author: Jinmei Liao <[email protected]>
Date: 2015-11-17T16:42:10Z
GEODE-331: Update Jetty version in order to avoid security vulnerability
----
> Update Jetty version in order to avoid security vulnerability
> -------------------------------------------------------------
>
> Key: GEODE-331
> URL: https://issues.apache.org/jira/browse/GEODE-331
> Project: Geode
> Issue Type: Bug
> Components: core, extensions
> Reporter: William Markito Oliveira
> Assignee: Jens Deppe
> Priority: Critical
>
> Update bundled Jetty version in order to avoid JetLeak vulnerability.
> For more details:
> - CVE-2015-2080
> -
> http://blog.gdssecurity.com/labs/2015/2/25/jetleak-vulnerability-remote-leakage-of-shared-buffers-in-je.html
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
