View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0006176 | SymmetricDS | Bug | public | 2024-01-04 15:36 | 2024-01-09 16:18 |
Reporter | elong | Assigned To | elong | ||
Priority | normal | ||||
Status | closed | Resolution | fixed | ||
Product Version | 3.15.0 | ||||
Target Version | 3.15.3 | Fixed in Version | 3.15.3 | ||
Summary | 0006176: Upgrade Jetty | ||||
Description | Upgrade Jetty to fix CVE-2023-36478 and CVE-2023-44487 which are vulnerabilities in HTTP/2 protocol handling. SymmetricDS has HTTP/2 disabled by default, so it should not be exploitable out of the box. | ||||
Tags | security | ||||
Date Modified | Username | Field | Change |
---|---|---|---|
2024-01-04 15:36 | elong | New Issue | |
2024-01-04 15:36 | elong | Status | new => assigned |
2024-01-04 15:36 | elong | Assigned To | => elong |
2024-01-04 15:36 | elong | Tag Attached: security | |
2024-01-04 15:36 | elong | Issue generated from: 0006175 | |
2024-01-04 15:36 | elong | Relationship added | related to 0006175 |
2024-01-04 15:37 | elong | Status | assigned => resolved |
2024-01-04 15:37 | elong | Resolution | open => fixed |
2024-01-04 15:37 | elong | Fixed in Version | => 3.15.3 |
2024-01-09 16:18 | admin | Changeset attached | => SymmetricDS 3.15 530cd518 |
2024-02-05 18:58 | admin | Status | resolved => closed |