From 7fafb4e927d7eb3bccecf3dd16fad1e56a370fa2 Mon Sep 17 00:00:00 2001 From: CritasWang Date: Mon, 2 Feb 2026 10:42:24 +0800 Subject: [PATCH 1/2] Security fix: Bump Jetty to 9.4.58.v20250814 (CVE-2025-5115). --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index 3b2133c03347..26db7bf074e5 100644 --- a/pom.xml +++ b/pom.xml @@ -106,7 +106,7 @@ 2.40 - 9.4.57.v20241219 + 9.4.58.v20250814 0.12.7 3.26.2 5.14.0 From bfa0d9afa399ae089b10edbd0c6f3c9ebdff2ab0 Mon Sep 17 00:00:00 2001 From: CritasWang Date: Mon, 2 Feb 2026 10:52:40 +0800 Subject: [PATCH 2/2] update LICENSE-binary --- LICENSE-binary | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/LICENSE-binary b/LICENSE-binary index a5c3904478d5..482b1c1e7a54 100644 --- a/LICENSE-binary +++ b/LICENSE-binary @@ -226,12 +226,12 @@ jakarta.inject:jakarta.inject:2.6.1 at.yawk.lz4:lz4-java:1.10.0 com.github.stephenc.jcip:jcip-annotations:1.0-1 com.github.ben-manes.caffeine:caffeine:2.9.3 -org.eclipse.jetty:jetty-http:9.4.57.v20241219 -org.eclipse.jetty:jetty-io:9.4.57.v20241219 -org.eclipse.jetty:jetty-security:9.4.57.v20241219 -org.eclipse.jetty:jetty-server:9.4.57.v20241219 -org.eclipse.jetty:jetty-servlet:9.4.57.v20241219 -org.eclipse.jetty:jetty-util:9.4.57.v20241219 +org.eclipse.jetty:jetty-http:9.4.58.v20250814 +org.eclipse.jetty:jetty-io:9.4.58.v20250814 +org.eclipse.jetty:jetty-security:9.4.58.v20250814 +org.eclipse.jetty:jetty-server:9.4.58.v20250814 +org.eclipse.jetty:jetty-servlet:9.4.58.v20250814 +org.eclipse.jetty:jetty-util:9.4.58.v20250814 io.jsonwebtoken:jjwt-api:0.12.7 io.jsonwebtoken:jjwt-impl:0.12.7 io.jsonwebtoken:jjwt-jackson:0.12.7