thirdeye icon indicating copy to clipboard operation
thirdeye copied to clipboard
verified publisher icon startreedata

[Snyk] Security upgrade org.eclipse.jetty:jetty-proxy from 9.4.48.v20220622 to 9.4.53.v20231009

Open startree-cicd-2 opened this issue 1 year ago • 0 comments

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • pom.xml

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Upgrade Breaking Change Exploit Maturity
low severity Information Exposure
SNYK-JAVA-ORGECLIPSEJETTY-5426161		 org.eclipse.jetty:jetty-proxy:
9.4.48.v20220622 -> 9.4.53.v20231009
No No Known Exploit
medium severity Improper Handling of Length Parameter Inconsistency
SNYK-JAVA-ORGECLIPSEJETTY-5902998		 org.eclipse.jetty:jetty-proxy:
9.4.48.v20220622 -> 9.4.53.v20231009
No Proof of Concept
high severity Denial of Service (DoS)
SNYK-JAVA-ORGECLIPSEJETTY-5958847		 org.eclipse.jetty:jetty-proxy:
9.4.48.v20220622 -> 9.4.53.v20231009
No No Known Exploit

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Denial of Service (DoS)

startree-cicd-2 avatar May 06 '24 21:05 startree-cicd-2