Uploaded image for project: 'Kafka'
  1. Kafka
  2. KAFKA-15487

CVE-2023-40167, CVE-2023-36479 - Upgrade jetty to 9.4.52, 10.0.16, 11.0.16, 12.0.1

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 2.7.0, 2.6.1, 3.4.1, 3.6.0, 3.5.1
    • 3.6.0, 3.4.2, 3.5.2
    • None

    Description

      CVE-2023-40167 and CVE-2023-36479 vulnerabilities affects Jetty version 9.4.51. For more information see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40167 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-364749 

      Upgrading to Jetty version 9.4.52, 10.0.16, 11.0.16, 12.0.1 should address this issue.

      Attachments

        Issue Links

          Activity

            People

              divijvaidya Divij Vaidya
              rafariossaa Rafael Rios Saavedra
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: