Erik Krogen created SPARK-34752: ----------------------------------- Summary: Upgrade Jetty to 9.3.37 to fix CVE-2020-27223 Key: SPARK-34752 URL: https://issues.apache.org/jira/browse/SPARK-34752 Project: Spark Issue Type: Improvement Components: Spark Core Affects Versions: 3.1.1 Reporter: Erik Krogen
Another day, another Jetty CVE :) Our internal build tools are complaining about Spark's dependency on Jetty 9.3.36 and I found it is because there is another Jetty CVE on the version we recently upgraded to in SPARK-34449. Time for another upgrade to 9.3.37. -- This message was sent by Atlassian Jira (v8.3.4#803005) --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@spark.apache.org For additional commands, e-mail: issues-h...@spark.apache.org