You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@lucene.apache.org by "Uwe Schindler (JIRA)" <ji...@apache.org> on 2015/03/03 17:38:04 UTC

[jira] [Resolved] (SOLR-7184) Update Jetty to 9.2.9

     [ https://issues.apache.org/jira/browse/SOLR-7184?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Uwe Schindler resolved SOLR-7184.
---------------------------------
    Resolution: Fixed
      Assignee: Uwe Schindler

I also fixed CHANGES.txt in branch_5x (incorrect Jetty versions for 5.0 and 5.1!!!)

> Update Jetty to 9.2.9
> ---------------------
>
>                 Key: SOLR-7184
>                 URL: https://issues.apache.org/jira/browse/SOLR-7184
>             Project: Solr
>          Issue Type: Task
>          Components: Server
>    Affects Versions: Trunk
>            Reporter: Uwe Schindler
>            Assignee: Uwe Schindler
>            Priority: Blocker
>             Fix For: Trunk
>
>         Attachments: SOLR-7184.patch
>
>
> Due to the security leak in the Jetty webserver have to update the branches that use Jetty 9.2.x to latest version 9.2.9:
> - http://blog.gdssecurity.com/labs/2015/2/25/jetleak-vulnerability-remote-leakage-of-shared-buffers-in-je.html
> - https://github.com/eclipse/jetty.project/blob/master/advisories/2015-02-24-httpparser-error-buffer-bleed.md



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
For additional commands, e-mail: dev-help@lucene.apache.org