[jira] [Updated] (ZOOKEEPER-4023) dependency-check:check failing - Jetty 9.4.34.v20201102 - CVE-2020-27218

ASF GitHub Bot (Jira) Sat, 05 Dec 2020 11:59:05 -0800


     [ 
https://issues.apache.org/jira/browse/ZOOKEEPER-4023?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


ASF GitHub Bot updated ZOOKEEPER-4023:
--------------------------------------
    Labels: owasp pull-request-available  (was: owasp)

> dependency-check:check failing - Jetty 9.4.34.v20201102 - CVE-2020-27218
> ------------------------------------------------------------------------
>
>                 Key: ZOOKEEPER-4023
>                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4023
>             Project: ZooKeeper
>          Issue Type: Task
>          Components: server
>    Affects Versions: 3.7.0, 3.5.8, 3.6.2
>            Reporter: Damien Diederen
>            Assignee: Damien Diederen
>            Priority: Blocker
>              Labels: owasp, pull-request-available
>             Fix For: 3.7.0, 3.5.9, 3.6.3
>
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> {noformat}
> [ERROR] Failed to execute goal org.owasp:dependency-check-maven:5.3.0:check 
> (default-cli) on project zookeeper: 
> [ERROR] 
> [ERROR] One or more dependencies were identified with vulnerabilities that 
> have a CVSS score greater than or equal to '0,0': 
> [ERROR] 
> [ERROR] jetty-server-9.4.34.v20201102.jar: CVE-2020-27218
> [ERROR] jetty-http-9.4.34.v20201102.jar: CVE-2020-27218
> [ERROR] 
> [ERROR] See the dependency-check report for more details.
> {noformat}



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (ZOOKEEPER-4023) dependency-check:check failing - Jetty 9.4.34.v20201102 - CVE-2020-27218

Reply via email to