[jira] [Commented] (SENTRY-1121) Update Jetty version

Sravya Tirukkovalur (JIRA) Mon, 21 Mar 2016 09:53:41 -0700

    [ 
https://issues.apache.org/jira/browse/SENTRY-1121?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15204588#comment-15204588
 ]


Sravya Tirukkovalur commented on SENTRY-1121:
---------------------------------------------

Thanks for the patch [~coheig]! The above link also talks about verifying the 
fix. Wondering did you get a chance to verify? If not, do you think we should?

> Update Jetty version
> --------------------
>
>                 Key: SENTRY-1121
>                 URL: https://issues.apache.org/jira/browse/SENTRY-1121
>             Project: Sentry
>          Issue Type: Improvement
>            Reporter: Colm O hEigeartaigh
>            Assignee: Colm O hEigeartaigh
>             Fix For: 1.7.0
>
>         Attachments: SENTRY-1121.patch
>
>
> The current Jetty version is 7.6.x. However there is a security vulnerability 
> issued recently that is only fixed in the latest 8.1.x patch release:
> https://srcclr.com/security/denial-service-dos-cpu-consumption/java/s-1615



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (SENTRY-1121) Update Jetty version

Reply via email to