[ https://issues.apache.org/jira/browse/KAFKA-14107?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Mickael Maison updated KAFKA-14107: ----------------------------------- Affects Version/s: 3.1.1 3.0.1 > Upgrade Jetty for CVE fixes > --------------------------- > > Key: KAFKA-14107 > URL: https://issues.apache.org/jira/browse/KAFKA-14107 > Project: Kafka > Issue Type: Bug > Components: core > Affects Versions: 3.0.1, 3.2.0, 3.1.1 > Reporter: Andrew Borley > Priority: Minor > Labels: security > Fix For: 3.3.0 > > > There are a couple of CVEs for Jetty: > - [CVE-2022-2048](https://nvd.nist.gov/vuln/detail/CVE-2022-2048) > - [CVE-2022-2047](https://nvd.nist.gov/vuln/detail/CVE-2022-2047) > Fixed by upgrading to 9.4.48.v20220622+ -- This message was sent by Atlassian Jira (v8.20.10#820010)