Changelog for
jetty-ant-9.4.43-3.12.2.noarch.rpm :
* Mon Jul 19 2021 fstrbaAATTsuse.com- Splitting the jetty-unixsocket artifact into a separate spec file in order to avoid extra dependencies for the jetty-minimal package.
* Mon Jul 19 2021 fstrbaAATTsuse.com- Update to version 9.4.43.v20210629
* Fix: bsc#1188438, CVE-2021-34429
* Changes: + Improve alias checking in PathResource + java.nio.ReadOnlyBufferException + Deprecate support for UTF16 encoding in URIs + Update to spifly 1.3.3 + Update to asm 9.1
* Mon Jun 28 2021 shvetz.antonAATTgmail.com- Package modules: ant, cdi, deploy, fcgi, http-spi, quickstart, rewrite, start, unixsocket
* Wed Jun 09 2021 fstrbaAATTsuse.com- Update to version 9.4.42.v20210604
* Fix: bsc#1187117, CVE-2021-28169
* Fri May 14 2021 rpmAATTfthiessen.de- Update to version 9.4.40.v20210413
* Fix: bsc#1184367, CVE-2021-28165 - jetty server high CPU when client send data length > 17408
* Fix: bsc#1184368, CVE-2021-28164 - Normalize ambiguous URIs
* Fix: bsc#1184366, CVE-2021-28163 - Exclude webapps directory from deployment scan
* Fri Mar 12 2021 fstrbaAATTsuse.com- Upgrade to upstream version 9.4.38.v20210224
* Fixes bsc#1182898, CVE-2020-27223
* Mon Dec 07 2020 fstrbaAATTsuse.com- Upgrade to upstream version 9.4.35.v20201120
* Fixes bsc#1179727, CVE-2020-27218
* Thu Nov 19 2020 fstrbaAATTsuse.com- Upgrade to upstream version 9.4.30.v20200611
* Thu Apr 02 2020 fstrbaAATTsuse.com- Upgrade to upstream version 9.4.27.v20200227
* Thu Nov 28 2019 fstrbaAATTsuse.com- Removed patch:
* jetty-annotations-asm6.patch + not needed when building against ASM7
* Fri Nov 08 2019 fstrbaAATTsuse.com- Upgrade to upstream version 2.9.22.v20191022
* new jetty-openid amd jetty-util-ajax sub-packages- Modified patch:
* jetty-annotations-asm6.patch + adapt to changed context + build against asm6 instead of asm7 that we don\'t have- Fix some rpmlint warnings and errors
* Tue Nov 05 2019 fstrbaAATTsuse.com- Initial packaging of a minimal version of jetty 9.4.19.v20190610
* This version is light on dependencies