Skip to content

Improve SSLConnection buffers handling (CVE-2022-2191) #8161

Closed
Consensys/tessera
#1463
Closed
Improve SSLConnection buffers handling (CVE-2022-2191)#8161
Consensys/tessera
#1463
Assignees
lorban
Labels
BugFor general bugs on Jetty sideSecuritySponsoredThis issue affects a user with a commercial support agreement
@lorban

Description

@lorban
lorban
opened on Jun 13, 2022

Jetty version(s)
10+

Description
SSLConnection's buffers utilization and their pooling should be reviewed.

Fixes Security Advisory
GHSA-8mpp-f3f7-xc28
CVE-2022-2191

Metadata

Metadata

Assignees

Labels

BugFor general bugs on Jetty sideSecuritySponsoredThis issue affects a user with a commercial support agreement

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions