[
https://issues.apache.org/jira/browse/ZOOKEEPER-4023?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Damien Diederen updated ZOOKEEPER-4023:
---------------------------------------
Description:
{noformat}
[ERROR] Failed to execute goal org.owasp:dependency-check-maven:5.3.0:check
(default-cli) on project zookeeper:
[ERROR]
[ERROR] One or more dependencies were identified with vulnerabilities that have
a CVSS score greater than or equal to '0,0':
[ERROR]
[ERROR] jetty-server-9.4.34.v20201102.jar: CVE-2020-27218
[ERROR] jetty-http-9.4.34.v20201102.jar: CVE-2020-27218
[ERROR]
[ERROR] See the dependency-check report for more details.
{noformat}
was:https://ci-hadoop.apache.org/view/ZooKeeper/job/zookeeper-multi-branch-owasp/job/master/38/artifact/zookeeper-server/target/dependency-check-report.html
> dependency-check:check failing - Jetty 9.4.34.v20201102 - CVE-2020-27218
> ------------------------------------------------------------------------
>
> Key: ZOOKEEPER-4023
> URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4023
> Project: ZooKeeper
> Issue Type: Task
> Components: server
> Affects Versions: 3.7.0, 3.5.8, 3.6.2
> Reporter: Damien Diederen
> Assignee: Damien Diederen
> Priority: Blocker
> Labels: owasp
> Fix For: 3.7.0, 3.5.9, 3.6.3
>
>
> {noformat}
> [ERROR] Failed to execute goal org.owasp:dependency-check-maven:5.3.0:check
> (default-cli) on project zookeeper:
> [ERROR]
> [ERROR] One or more dependencies were identified with vulnerabilities that
> have a CVSS score greater than or equal to '0,0':
> [ERROR]
> [ERROR] jetty-server-9.4.34.v20201102.jar: CVE-2020-27218
> [ERROR] jetty-http-9.4.34.v20201102.jar: CVE-2020-27218
> [ERROR]
> [ERROR] See the dependency-check report for more details.
> {noformat}
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
