Skip to content

Commit 858b787

Browse files
anmolnaranmolnar
authored
ZOOKEEPER-4876: jetty-http-9.4.53.v20231009.jar: CVE-2024-6763(3.7)
Reviewers: ztzg Author: anmolnar Closes #2202 from anmolnar/ZOOKEEPER-4876
1 parent b997145 commit 858b787

File tree

2 files changed

+6
-2
lines changed

2 files changed

+6
-2
lines changed

owaspSuppressions.xml

+5-1
Original file line numberDiff line numberDiff line change
@@ -18,6 +18,11 @@
1818
-->
1919

2020
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.2.xsd">
21+
<suppress>
22+
<!-- ZooKeeper is not affected, because HttpURI is not used in our code.
23+
see: ZOOKEEPER-4876 -->
24+
<cve>CVE-2024-6763</cve>
25+
</suppress>
2126
<suppress>
2227
<!-- ZOOKEEPER-3217 -->
2328
<cve>CVE-2018-8088</cve>
@@ -72,5 +77,4 @@
7277
in json-java which we don't use in ZooKeeper -->
7378
<cve>CVE-2022-45688</cve>
7479
</suppress>
75-
7680
</suppressions>

pom.xml

+1-1
Original file line numberDiff line numberDiff line change
@@ -560,7 +560,7 @@
560560
<hamcrest.version>2.2</hamcrest.version>
561561
<commons-cli.version>1.5.0</commons-cli.version>
562562
<netty.version>4.1.113.Final</netty.version>
563-
<jetty.version>9.4.53.v20231009</jetty.version>
563+
<jetty.version>9.4.56.v20240826</jetty.version>
564564
<jackson.version>2.15.2</jackson.version>
565565
<jline.version>2.14.6</jline.version>
566566
<snappy.version>1.1.10.5</snappy.version>

0 commit comments

Comments
 (0)