From 61bcc6068e494943686585973fb14a9d3db5fd7f Mon Sep 17 00:00:00 2001 From: Lachlan Roberts Date: Thu, 29 Jul 2021 15:07:43 +1000 Subject: [PATCH] Update VERSION.txt with CVE-2021-34429. Signed-off-by: Lachlan Roberts --- VERSION.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/VERSION.txt b/VERSION.txt index 405b0ed2783..372baea126a 100644 --- a/VERSION.txt +++ b/VERSION.txt @@ -9,7 +9,7 @@ jetty-10.0.6 - 29 June 2021 + 6410 Ensure Jetty IO uses SocketAddress instead of InetSocketAddress + 6418 Bad and/or missing Require-Capability for osgi.serviceloader + 6425 Update to asm 9.1 - + 6447 Deprecate support for UTF16 encoding in URIs + + 6447 Deprecate support for UTF16 encoding in URIs (Resolves CVE-2021-34429) + 6451 Request#getServletPath() returns null for ROOT mapping + 6464 Wrong files/lib definitions in certain *-capture.mod files? + 6473 Improve alias checking in PathResource