Bug 27921

Summary: jetty new security issue CVE-2020-27218
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: Java Stack Maintainers <java>
Status: RESOLVED DUPLICATE QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: mageia
Version: 7   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: jetty-9.4.33-1.mga8.src.rpm CVE:
Status comment:

Description David Walser 2020-12-24 16:35:44 CET 
SUSE has issued an advisory on December 22:
https://lists.suse.com/pipermail/sle-security-updates/2020-December/008114.html

The issue is fixed upstream in 9.4.35.

Mageia 7 is also affected.
David Walser 2020-12-24 16:35:54 CET

Whiteboard: (none) => MGA7TOO
Blocks: (none) => 27649

Comment 1 Nicolas Lécureuil 2020-12-25 20:27:57 CET 
New version pushed in cauldron.

Whiteboard: MGA7TOO => (none)
Version: Cauldron => 7
CC: (none) => mageia

Comment 2 Nicolas Lécureuil 2020-12-25 20:39:48 CET 
need to build first :-)

Whiteboard: (none) => MGA7TOO
Version: 7 => Cauldron

Comment 3 Nicolas Lécureuil 2020-12-25 21:54:26 CET 
built on cauldron.

Version: Cauldron => 7
Whiteboard: MGA7TOO => (none)

Comment 4 David Walser 2020-12-26 16:40:14 CET 
Merging this into Bug 27649.

*** This bug has been marked as a duplicate of bug 27649 ***

Blocks: 27649 => (none)
Resolution: (none) => DUPLICATE
Status: NEW => RESOLVED