Bug 27921 - jetty new security issue CVE-2020-27218
Summary: jetty new security issue CVE-2020-27218
Status: RESOLVED DUPLICATE of bug 27649
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 7
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: Java Stack Maintainers
QA Contact: Sec team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2020-12-24 16:35 CET by David Walser
Modified: 2020-12-26 16:40 CET (History)
1 user (show)

See Also:
Source RPM: jetty-9.4.33-1.mga8.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2020-12-24 16:35:44 CET 
SUSE has issued an advisory on December 22:
https://lists.suse.com/pipermail/sle-security-updates/2020-December/008114.html

The issue is fixed upstream in 9.4.35.

Mageia 7 is also affected.
David Walser 2020-12-24 16:35:54 CET

Whiteboard: (none) => MGA7TOO
Blocks: (none) => 27649

Comment 1 Nicolas Lécureuil 2020-12-25 20:27:57 CET 
New version pushed in cauldron.

Whiteboard: MGA7TOO => (none)
Version: Cauldron => 7
CC: (none) => mageia

Comment 2 Nicolas Lécureuil 2020-12-25 20:39:48 CET 
need to build first :-)

Whiteboard: (none) => MGA7TOO
Version: 7 => Cauldron

Comment 3 Nicolas Lécureuil 2020-12-25 21:54:26 CET 
built on cauldron.

Version: Cauldron => 7
Whiteboard: MGA7TOO => (none)

Comment 4 David Walser 2020-12-26 16:40:14 CET 
Merging this into Bug 27649.

*** This bug has been marked as a duplicate of bug 27649 ***

Blocks: 27649 => (none)
Resolution: (none) => DUPLICATE
Status: NEW => RESOLVED
Note You need to log in before you can comment on or make changes to this bug.