gaurav-narula commented on PR #21395: URL: https://github.com/apache/kafka/pull/21395#issuecomment-3850020726
@chia7712 https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/253 mentions a reproducer for the CVE is at https://github.com/dtbaum/jerseyCveCandidate. I was able to reproduce it with `2.39.1` as well using that repo by editing `pom.xml` and replacing `jakarta.*` imports with `javax.*`. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
