You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@bookkeeper.apache.org by ch...@apache.org on 2024/01/18 13:21:28 UTC
(bookkeeper) 14/23: Update Jetty dependency. (#4141)

This is an automated email from the ASF dual-hosted git repository.

chenhang pushed a commit to branch branch-4.16
in repository https://gitbox.apache.org/repos/asf/bookkeeper.git

commit 57282500351362c24829b930e592a6ee7e77c2a6
Author: Anup Ghatage <gh...@apache.org>
AuthorDate: Sun Dec 3 17:55:00 2023 -0800

    Update Jetty dependency. (#4141)
    
    9.4.51 needs to be updated due to
    - https://nvd.nist.gov/vuln/detail/CVE-2023-40167
    - https://security.snyk.io/vuln/SNYK-JAVA-ORGECLIPSEJETTY-5958847
    
    Co-authored-by: Anup Ghatage <ag...@salesforce.com>
    (cherry picked from commit c1b7f76d77267c0ac10e8a0e80a2890191aaae84)
---
 bookkeeper-dist/src/main/resources/LICENSE-all.bin.txt   | 14 +++++++-------
 .../src/main/resources/LICENSE-server.bin.txt            | 14 +++++++-------
 bookkeeper-dist/src/main/resources/NOTICE-all.bin.txt    | 16 ++++++++--------
 bookkeeper-dist/src/main/resources/NOTICE-server.bin.txt | 16 ++++++++--------
 pom.xml                                                  |  2 +-
 5 files changed, 31 insertions(+), 31 deletions(-)

diff --git a/bookkeeper-dist/src/main/resources/LICENSE-all.bin.txt b/bookkeeper-dist/src/main/resources/LICENSE-all.bin.txt
index 3b2ed988ba..b488c58fe2 100644
--- a/bookkeeper-dist/src/main/resources/LICENSE-all.bin.txt
+++ b/bookkeeper-dist/src/main/resources/LICENSE-all.bin.txt
@@ -263,13 +263,13 @@ Apache Software License, Version 2.
 - lib/org.apache.zookeeper-zookeeper-3.8.3.jar [21]
 - lib/org.apache.zookeeper-zookeeper-jute-3.8.3.jar [21]
 - lib/org.apache.zookeeper-zookeeper-3.8.3-tests.jar [21]
-- lib/org.eclipse.jetty-jetty-http-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-io-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-security-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-server-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-servlet-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-util-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-util-ajax-9.4.51.v20230217.jar [22]
+- lib/org.eclipse.jetty-jetty-http-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-io-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-security-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-server-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-servlet-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-util-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-util-ajax-9.4.53.v20231009.jar [22]
 - lib/org.rocksdb-rocksdbjni-7.9.2.jar [23]
 - lib/com.beust-jcommander-1.82.jar [24]
 - lib/com.yahoo.datasketches-memory-0.8.3.jar [25]
diff --git a/bookkeeper-dist/src/main/resources/LICENSE-server.bin.txt b/bookkeeper-dist/src/main/resources/LICENSE-server.bin.txt
index c354d1bb8b..ad14d4048d 100644
--- a/bookkeeper-dist/src/main/resources/LICENSE-server.bin.txt
+++ b/bookkeeper-dist/src/main/resources/LICENSE-server.bin.txt
@@ -263,13 +263,13 @@ Apache Software License, Version 2.
 - lib/org.apache.zookeeper-zookeeper-3.8.3.jar [21]
 - lib/org.apache.zookeeper-zookeeper-jute-3.8.3.jar [21]
 - lib/org.apache.zookeeper-zookeeper-3.8.3-tests.jar [21]
-- lib/org.eclipse.jetty-jetty-http-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-io-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-security-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-server-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-servlet-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-util-9.4.51.v20230217.jar [22]
-- lib/org.eclipse.jetty-jetty-util-ajax-9.4.51.v20230217.jar [22]
+- lib/org.eclipse.jetty-jetty-http-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-io-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-security-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-server-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-servlet-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-util-9.4.53.v20231009.jar [22]
+- lib/org.eclipse.jetty-jetty-util-ajax-9.4.53.v20231009.jar [22]
 - lib/org.rocksdb-rocksdbjni-7.9.2.jar [23]
 - lib/com.beust-jcommander-1.82.jar [24]
 - lib/com.yahoo.datasketches-memory-0.8.3.jar [25]
diff --git a/bookkeeper-dist/src/main/resources/NOTICE-all.bin.txt b/bookkeeper-dist/src/main/resources/NOTICE-all.bin.txt
index 4b82428052..6019c6e90a 100644
--- a/bookkeeper-dist/src/main/resources/NOTICE-all.bin.txt
+++ b/bookkeeper-dist/src/main/resources/NOTICE-all.bin.txt
@@ -92,13 +92,13 @@ SoundCloud Ltd. (http://soundcloud.com/).
 This product includes software developed as part of the
 Ocelli project by Netflix Inc. (https://github.com/Netflix/ocelli/).
 ------------------------------------------------------------------------------------
-- lib/org.eclipse.jetty-jetty-http-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-io-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-security-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-server-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-servlet-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-util-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-util-ajax-9.4.51.v20230217.jar
+- lib/org.eclipse.jetty-jetty-http-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-io-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-security-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-server-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-servlet-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-util-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-util-ajax-9.4.53.v20231009.jar
 
 ==============================================================
  Jetty Web Container
@@ -120,7 +120,7 @@ Jetty is dual licensed under both
 
 Jetty may be distributed under either license.
 
-lib/org.eclipse.jetty-jetty-util-9.4.51.v20230217.jar bundles UnixCrypt
+lib/org.eclipse.jetty-jetty-util-9.4.53.v20231009.jar bundles UnixCrypt
 
 The UnixCrypt.java code implements the one way cryptography used by
 Unix systems for simple password protection.  Copyright 1996 Aki Yoshida,
diff --git a/bookkeeper-dist/src/main/resources/NOTICE-server.bin.txt b/bookkeeper-dist/src/main/resources/NOTICE-server.bin.txt
index b061617e6b..848bd55ef2 100644
--- a/bookkeeper-dist/src/main/resources/NOTICE-server.bin.txt
+++ b/bookkeeper-dist/src/main/resources/NOTICE-server.bin.txt
@@ -74,13 +74,13 @@ SoundCloud Ltd. (http://soundcloud.com/).
 This product includes software developed as part of the
 Ocelli project by Netflix Inc. (https://github.com/Netflix/ocelli/).
 ------------------------------------------------------------------------------------
-- lib/org.eclipse.jetty-jetty-http-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-io-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-security-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-server-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-servlet-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-util-9.4.51.v20230217.jar
-- lib/org.eclipse.jetty-jetty-util-ajax-9.4.51.v20230217.jar
+- lib/org.eclipse.jetty-jetty-http-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-io-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-security-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-server-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-servlet-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-util-9.4.53.v20231009.jar
+- lib/org.eclipse.jetty-jetty-util-ajax-9.4.53.v20231009.jar
 
 ==============================================================
  Jetty Web Container
@@ -102,7 +102,7 @@ Jetty is dual licensed under both
 
 Jetty may be distributed under either license.
 
-lib/org.eclipse.jetty-jetty-util-9.4.51.v20230217.jar bundles UnixCrypt
+lib/org.eclipse.jetty-jetty-util-9.4.53.v20231009.jar bundles UnixCrypt
 
 The UnixCrypt.java code implements the one way cryptography used by
 Unix systems for simple password protection.  Copyright 1996 Aki Yoshida,
diff --git a/pom.xml b/pom.xml
index 1b15bc6ac6..57b5910597 100644
--- a/pom.xml
+++ b/pom.xml
@@ -140,7 +140,7 @@
     <hdrhistogram.version>2.1.10</hdrhistogram.version>
     <jackson.version>2.13.4.20221013</jackson.version>
     <jcommander.version>1.82</jcommander.version>
-    <jetty.version>9.4.51.v20230217</jetty.version>
+    <jetty.version>9.4.53.v20231009</jetty.version>
     <jmh.version>1.19</jmh.version>
     <jmock.version>2.8.2</jmock.version>
     <jsoup.version>1.14.3</jsoup.version>