Query regarding Jetty CVE-2024-22201 #8463
Closed
sandeepnkulkarni
started this conversation in
Development
Replies: 1 comment 1 reply
-
Thanks for bringing this up! ❤️ The issue will be addressed in Dropwizard 3.0.7 and 4.0.7 once the CI pipeline completed and the artifacts were synced to Maven Central. |
Beta Was this translation helpful? Give feedback.
1 reply
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Recently Jetty vulnerability CVE-2024-22201 was discovered. More details: GHSA-rggv-cv7r-mw98
Security scanner have detected it in latest version of Dropwizard 4.0.6 as well because it is using affected version.
Any plans to release a new version of Dropwizard with patched Jetty version?
Beta Was this translation helpful? Give feedback.
All reactions