View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0006175 | SymmetricDS | Bug | public | 2024-01-04 15:33 | 2024-01-09 16:18 |
| Reporter | elong | Assigned To | elong | ||
| Priority | normal | ||||
| Status | closed | Resolution | fixed | ||
| Product Version | 3.14.0 | ||||
| Target Version | 3.14.12 | Fixed in Version | 3.14.12 | ||
| Summary | 0006175: Upgrade Jetty | ||||
| Description | Upgrade Jetty to fix CVE-2023-36478 and CVE-2023-44487 which are vulnerabilities in HTTP/2 protocol handling. SymmetricDS has HTTP/2 disabled by default, so it should not be exploitable out of the box. | ||||
| Tags | security | ||||
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2024-01-04 15:33 | elong | New Issue | |
| 2024-01-04 15:33 | elong | Status | new => assigned |
| 2024-01-04 15:33 | elong | Assigned To | => elong |
| 2024-01-04 15:33 | elong | Tag Attached: security | |
| 2024-01-04 15:36 | elong | Status | assigned => resolved |
| 2024-01-04 15:36 | elong | Resolution | open => fixed |
| 2024-01-04 15:36 | elong | Fixed in Version | => 3.14.12 |
| 2024-01-04 15:36 | elong | Issue cloned: 0006176 | |
| 2024-01-04 15:36 | elong | Relationship added | related to 0006176 |
| 2024-01-09 16:18 | admin | Changeset attached | => SymmetricDS 3.14 635772a1 |
| 2024-02-05 18:57 | admin | Status | resolved => closed |