[jira] [Resolved] (SOLR-16987) Upgrade jetty to 10.0.16 (CVE-2023-40167)

Jira Tue, 19 Sep 2023 07:58:17 -0700


     [ 
https://issues.apache.org/jira/browse/SOLR-16987?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Jan Høydahl resolved SOLR-16987.
--------------------------------
    Resolution: Duplicate

Already done in [https://github.com/apache/solr/pull/1888] (to be released in 
9.4)

> Upgrade jetty to 10.0.16 (CVE-2023-40167)
> -----------------------------------------
>
>                 Key: SOLR-16987
>                 URL: https://issues.apache.org/jira/browse/SOLR-16987
>             Project: Solr
>          Issue Type: Improvement
>      Security Level: Public(Default Security Level. Issues are Public) 
>    Affects Versions: 9.3
>            Reporter: Nicolò Mendola
>            Priority: Major
>
> Jetty 10.0.16 is a security release upgrade mitigating CVE-2023-40167 related 
> to invalid characters in the Content-Length header.
> The project support branch should be upgraded to the latest version.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Resolved] (SOLR-16987) Upgrade jetty to 10.0.16 (CVE-2023-40167)

Reply via email to