Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jetty CVE fixes #431

Merged
merged 3 commits into from
Oct 16, 2024
Merged

Jetty CVE fixes #431

merged 3 commits into from
Oct 16, 2024

Conversation

kelvinqian00
Copy link
Collaborator

Small PR to address the following CVEs:

  • CVE-2024-6763: Suppress since our code does not utilize the HttpURI class, which is how the vulnerability is exposed
  • CVE-2024-8184: Update Jetty to 9.4.56.v20240826

@kelvinqian00 kelvinqian00 marked this pull request as ready for review October 16, 2024 17:13
@kelvinqian00 kelvinqian00 requested a review from milt October 16, 2024 17:13
@kelvinqian00 kelvinqian00 merged commit 8a774bb into main Oct 16, 2024
16 checks passed
@kelvinqian00 kelvinqian00 deleted the jetty-cve-fix branch October 16, 2024 17:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants