You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@sentry.apache.org by "Li Li (JIRA)" <ji...@apache.org> on 2016/03/08 22:38:40 UTC
[jira] [Commented] (SENTRY-1121) Update Jetty version
[ https://issues.apache.org/jira/browse/SENTRY-1121?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15185877#comment-15185877 ]
Li Li commented on SENTRY-1121:
-------------------------------
[~coheigea] Better to change the patch name to:
SENTRY-1121.1.patch or SENTRY-1121.001.patch
> Update Jetty version
> --------------------
>
> Key: SENTRY-1121
> URL: https://issues.apache.org/jira/browse/SENTRY-1121
> Project: Sentry
> Issue Type: Improvement
> Reporter: Colm O hEigeartaigh
> Fix For: 1.7.0
>
> Attachments: 0001-SENTRY-1121-Update-Jetty-version.patch
>
>
> The current Jetty version is 7.6.x. However there is a security vulnerability issued recently that is only fixed in the latest 8.1.x patch release:
> https://srcclr.com/security/denial-service-dos-cpu-consumption/java/s-1615
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)