[jira] [Commented] (SENTRY-1121) Update Jetty version

Colm O hEigeartaigh (JIRA) Thu, 10 Mar 2016 03:18:07 -0800

    [ 
https://issues.apache.org/jira/browse/SENTRY-1121?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15189113#comment-15189113
 ]


Colm O hEigeartaigh commented on SENTRY-1121:
---------------------------------------------

Hi Stravya,

Moving this back to 1.7.0 as it's a security vulnerability, so we should really 
include it in the next release.

Colm.

> Update Jetty version
> --------------------
>
>                 Key: SENTRY-1121
>                 URL: https://issues.apache.org/jira/browse/SENTRY-1121
>             Project: Sentry
>          Issue Type: Improvement
>            Reporter: Colm O hEigeartaigh
>             Fix For: 1.7.0
>
>         Attachments: SENTRY-1121.version
>
>
> The current Jetty version is 7.6.x. However there is a security vulnerability 
> issued recently that is only fixed in the latest 8.1.x patch release:
> https://srcclr.com/security/denial-service-dos-cpu-consumption/java/s-1615



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (SENTRY-1121) Update Jetty version

Reply via email to