Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [jetty-users] Jetty CVE Fix Tracking


Yicheng,

Our security policy is listed at https://github.com/jetty/jetty.project/security/policy
And a list of security issues is available at : https://jetty.org/security.html


On Wed, 6 Nov 2024 at 13:18, Wang Yicheng via jetty-users <jetty-users@xxxxxxxxxxx> wrote:
Hi team,

Could someone help clarify how Jetty handles all CVE fixes? I wasn’t able to find a central place listing all resolved CVEs. I did notice that the VERSION.txt file in the release package includes some Git commit comments mentioning CVEs, but it doesn’t seem to provide a complete list.

If a centralized list isn’t currently available, would it be possible to start tracking all CVE fixes in the release README or VERSION.txt?

Thank you!

Best,
Yicheng
_______________________________________________
jetty-users mailing list
jetty-users@xxxxxxxxxxx
To unsubscribe from this list, visit https://www.eclipse.org/mailman/listinfo/jetty-users


--

Back to the top