Hello I'm reviewing Pax Web now and I'll take care of the upgrade. Which Pax Web version are you using? 7.2.x?
regards Grzegorz Grzybek czw., 23 sty 2020 o 12:35 Rasmus Olesen <[email protected]> napisał(a): > For some reason i can't access the Jira bug reporting system. its just an > infinite loop of cant sign up because account already exists and cant login > because you account is doesnt have access... > > So i hope that someone else will create a issue for this upgrade. > > Jetty 9.4.21 to 9.4.23 are all affected by the following CVE > https://nvd.nist.gov/vuln/detail/CVE-2019-17632 > > PAX currently builds against 9.4.22 > > I know that newer of versions of Jetty might be "api"/runtime compatible, > but it would still be nice to have PAX building against a newer and non CVE > affected jetty version. > > /Rasmus > > -- > -- > ------------------ > OPS4J - http://www.ops4j.org - [email protected] > > --- > You received this message because you are subscribed to the Google Groups > "OPS4J" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/d/msgid/ops4j/a21deba1-653e-4d04-b005-c9ed1f19f152%40googlegroups.com > <https://groups.google.com/d/msgid/ops4j/a21deba1-653e-4d04-b005-c9ed1f19f152%40googlegroups.com?utm_medium=email&utm_source=footer> > . > -- -- ------------------ OPS4J - http://www.ops4j.org - [email protected] --- You received this message because you are subscribed to the Google Groups "OPS4J" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ops4j/CAAdXmhoSv%2B8BX6S-GBZwQQBWc8Ww62%2BGPb6OxevkFOM9FB0wJA%40mail.gmail.com.
