| Bug | stretch | buster | bullseye | sid | Description |
|---|
| CVE-2019-10247 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | In Eclipse Jetty version 7.x, 8.x, 9.2.27 and older, 9.3.26 and older, ... |
| CVE-2019-10241 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | In Eclipse Jetty version 9.2.26 and older, 9.3.25 and older, and 9.4.1 ... |
| CVE-2018-12536 | vulnerable (no DSA, ignored) | fixed | fixed | fixed | In Eclipse Jetty Server, all 9.x versions, on webapps deployed using d ... |
| CVE-2017-9735 | vulnerable (no DSA, ignored) | fixed | fixed | fixed | Jetty through 9.4.x is prone to a timing channel in util/security/Pass ... |
| Bug | Description |
|---|
| CVE-2019-10246 | In Eclipse Jetty version 9.2.27, 9.3.26, and 9.4.16, the server runnin ... |
| CVE-2018-12545 | In Eclipse Jetty version 9.3.x and 9.4.x, the server is vulnerable to ... |
| CVE-2018-12538 | In Eclipse Jetty versions 9.4.0 through 9.4.8, when using the optional ... |
| CVE-2017-7658 | In Eclipse Jetty Server, versions 9.2.x and older, 9.3.x (all non HTTP ... |
| CVE-2017-7657 | In Eclipse Jetty, versions 9.2.x and older, 9.3.x (all configurations) ... |
| CVE-2017-7656 | In Eclipse Jetty, versions 9.2.x and older, 9.3.x (all configurations) ... |
| CVE-2016-4800 | The path normalization mechanism in PathResource class in Eclipse Jett ... |