[ https://issues.apache.org/jira/browse/ZOOKEEPER-4023?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
ASF GitHub Bot updated ZOOKEEPER-4023: -------------------------------------- Labels: owasp pull-request-available (was: owasp) > dependency-check:check failing - Jetty 9.4.34.v20201102 - CVE-2020-27218 > ------------------------------------------------------------------------ > > Key: ZOOKEEPER-4023 > URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4023 > Project: ZooKeeper > Issue Type: Task > Components: server > Affects Versions: 3.7.0, 3.5.8, 3.6.2 > Reporter: Damien Diederen > Assignee: Damien Diederen > Priority: Blocker > Labels: owasp, pull-request-available > Fix For: 3.7.0, 3.5.9, 3.6.3 > > Time Spent: 10m > Remaining Estimate: 0h > > {noformat} > [ERROR] Failed to execute goal org.owasp:dependency-check-maven:5.3.0:check > (default-cli) on project zookeeper: > [ERROR] > [ERROR] One or more dependencies were identified with vulnerabilities that > have a CVSS score greater than or equal to '0,0': > [ERROR] > [ERROR] jetty-server-9.4.34.v20201102.jar: CVE-2020-27218 > [ERROR] jetty-http-9.4.34.v20201102.jar: CVE-2020-27218 > [ERROR] > [ERROR] See the dependency-check report for more details. > {noformat} -- This message was sent by Atlassian Jira (v8.3.4#803005)