[ https://issues.apache.org/jira/browse/ZOOKEEPER-4599?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17721108#comment-17721108 ]
Anton Stadnikov commented on ZOOKEEPER-4599: -------------------------------------------- Are there any updates? Is the fix is planned for 3.7.x branch? > Upgrade Jetty to avoid CVE-2022-2048 > ------------------------------------ > > Key: ZOOKEEPER-4599 > URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4599 > Project: ZooKeeper > Issue Type: Bug > Affects Versions: 3.6.3, 3.8.0, 3.7.1 > Reporter: Shivakumar > Assignee: Mate Szalay-Beko > Priority: Major > Labels: security > > |CVE ID|Type|Severity|Packages|Package Version|CVSS|Fix Status| > |CVE-2022-2048|java|high|org.eclipse.jetty_jetty-io|9.4.43.v20210629|7.5|fixed > in 11.0.9, 10.0.9, 9.4.47| > Our security scan detected the above vulnerabilities > upgrade to correct versions for fixing vulnerabilities -- This message was sent by Atlassian Jira (v8.20.10#820010)