New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump jetty-server from 9.4.49.v20220914 to 9.4.51.v20230217 in hdfs-fixture. #7405
Conversation
Gradle Check (Jenkins) Run Completed with:
|
Gradle Check (Jenkins) Run Completed with:
|
Codecov Report
📣 This organization is not using Codecov’s GitHub App Integration. We recommend you install it so Codecov can continue to function properly for your repositories. Learn more @@ Coverage Diff @@
## main #7405 +/- ##
============================================
- Coverage 70.70% 70.52% -0.19%
+ Complexity 59652 59533 -119
============================================
Files 4877 4877
Lines 285806 285806
Branches 41165 41165
============================================
- Hits 202085 201561 -524
- Misses 67144 67639 +495
- Partials 16577 16606 +29 |
CHANGELOG.md
Outdated
@@ -49,6 +49,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), | |||
- Bump `io.opencensus:opencensus-api` from 0.18.0 to 0.31.1 ([#7291](https://github.com/opensearch-project/OpenSearch/pull/7291)) | |||
- Bump `gradle.plugin.com.github.johnrengelman:shadow` from 7.1.2 to 8.0.0 | |||
- Bump `org.apache.shiro:shiro-core` from 1.9.1 to 1.11.0 ([#7397](https://github.com/opensearch-project/OpenSearch/pull/7397) | |||
- Bump `jetty-server` in hdfs-fixture from 9.4.49.v20220914 to 9.4.51.v20230217 ([#7405](https://github.com/opensearch-project/OpenSearch/pull/7405) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
If this needs to be backported to 2.x
, please move this change to the 2.x dependencies section below. And if possible, please hold off for #7409 and add your commit in
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
doh, fixing thanks.
Gradle Check (Jenkins) Run Completed with:
|
This version bump includes mitigations for CVE-2023-26048 and CVE-2023-26049. Signed-off-by: Marc Handalian <handalm@amazon.com>
Gradle Check (Jenkins) Run Completed with:
|
This version bump includes mitigations for CVE-2023-26048 and CVE-2023-26049. Signed-off-by: Marc Handalian <handalm@amazon.com> (cherry picked from commit c2c5730) Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
…7422) This version bump includes mitigations for CVE-2023-26048 and CVE-2023-26049. (cherry picked from commit c2c5730) Signed-off-by: Marc Handalian <handalm@amazon.com> Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
…ch-project#7405) This version bump includes mitigations for CVE-2023-26048 and CVE-2023-26049. Signed-off-by: Marc Handalian <handalm@amazon.com>
…ch-project#7405) This version bump includes mitigations for CVE-2023-26048 and CVE-2023-26049. Signed-off-by: Marc Handalian <handalm@amazon.com> Signed-off-by: Shivansh Arora <hishiv@amazon.com>
Description
This version bump includes mitigations for CVE-2023-26048 and CVE-2023-26049 see https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.51.v20230217.
Related Issues
N/A
Check List
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.