Eclipse
/
jetty.project
mirror of https://github.com/jetty/jetty.project.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Fixing CVE number for CGI servlet deprecation (#10523)

This commit is contained in:
Joakim Erdfelt 2023-09-15 02:24:20 -05:00 committed by GitHub
parent 927546309e
commit 1bfe69eeba
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
VERSION.txt
View File

@ -66,7 +66,7 @@ jetty-11.0.16 - 25 August 2023
+ 9772 Improve Quiche certificates deployment
+ 9777 CrossOriginFilter does not return Vary header on no-cors mode
+ 9795 http3-server is leaking the Jetty logging service to web applications
+ 9887 Deprecate CGI Servlet (CVE-2023-40167)
+ 9887 Deprecate CGI Servlet (CVE-2023-36479)
+ 9895 A MessageTooLargeException doesn't close a WebSocket connection
+ 9947 Cannot invoke "org.eclipse.jetty.io.ManagedSelector.getTotalKeys()"
because "selector" is null
@ -208,7 +208,7 @@ jetty-12.0.0.beta2 - 16 June 2023
+ 9879 Jetty-12 rewrite demo not working
+ 9880 Jetty 12 - jetty.sh does not work on Ubuntu
+ 9881 H2 perf can be pathologically bad
+ 9887 Deprecate CGI Servlet (CVE-2023-40167)
+ 9887 Deprecate CGI Servlet (CVE-2023-36479)
+ 9895 A MessageTooLargeException doesn't close a WebSocket connection
+ 9906 Inconsistent handling of empty "path info" between Jetty 10 and 12
+ Jan (@janbartel) is now using IntelliJ!
@ -245,7 +245,7 @@ jetty-12.0.0.beta1 - 02 May 2023
+ 9468 Jetty 11.0.14 is less tolerant of non-compliant cookies than 11.0.13
+ 9497 Maven plugin add support for jar projects in `:effective-web-xml`
+ 9501 jetty client with proxy - ssl traffic between both proxy and servers
+ 9516 Remove CGI Servlet (CVE-2023-40167)
+ 9516 Remove CGI Servlet (CVE-2023-36479)
+ 9537 "error-on-el-not-found" behavior is not as specified
+ 9552 Jetty 12 - Rewrite of the Jetty WebSocket APIs
+ 9554 Move (qpack/hpack) HuffmanDecoder / HuffmanEncoder / NBitInteger* to
@ -405,7 +405,7 @@ jetty-10.0.16 - 25 August 2023
+ 9772 Improve Quiche certificates deployment
+ 9777 CrossOriginFilter does not return Vary header on no-cors mode
+ 9795 http3-server is leaking the Jetty logging service to web applications
+ 9887 Deprecate CGI Servlet (CVE-2023-40167)
+ 9887 Deprecate CGI Servlet (CVE-2023-36479)
+ 9895 A MessageTooLargeException doesn't close a WebSocket connection
+ 9947 Cannot invoke "org.eclipse.jetty.io.ManagedSelector.getTotalKeys()"
because "selector" is null
@ -434,7 +434,7 @@ jetty-10.0.16 - 25 August 2023
jetty-9.4.52.v20230823 - 23 August 2023
+ 9476 onCompleteFailure called multiple times
+ 9660 OpenId Revoked authentication allows one request (CVE-2023-41900)
+ 9887 Deprecate CGI Servlet (CVE-2023-40167)
+ 9887 Deprecate CGI Servlet (CVE-2023-36479)
+ 10066 Allow `SAXParserFactory` or `SAXParser` to be configured in Jetty's
`XmlParser` class
+ 10168 NPE in websocket extension startup