[ https://issues.apache.org/jira/browse/KAFKA-14983?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Luke Chen updated KAFKA-14983: ------------------------------ Fix Version/s: 3.4.1 > Upgrade jetty-server to 9.4.51 > ------------------------------ > > Key: KAFKA-14983 > URL: https://issues.apache.org/jira/browse/KAFKA-14983 > Project: Kafka > Issue Type: Task > Affects Versions: 3.4.0 > Reporter: Beltran > Priority: Minor > Fix For: 3.5.0, 3.4.1 > > > Kafka latest versions e.g. 3.4.0 includes jetty-server-9.4.48.v20220622.jar > that includes 2 vulnerabilities: CVE-2023-26048 and CVE-2023-26049. Upgrading > them to 9.4.51 would fix those issues. -- This message was sent by Atlassian Jira (v8.20.10#820010)