Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [jetty-dev] Question about vulnerability: Assign Proxy header values to HTTP_PROXY environment variable 
Hi,

On Thu, Jul 21, 2016 at 9:18 AM, Houtman, Roland
<Roland.Houtman@xxxxxxxxxxxxxxx> wrote:
> Dear Devs,
>
>
>
> I’ve been asked to reply if jetty is vulnerable to the next exploit:
>
> http://www.kb.cert.org/vuls/id/797896
>
>
>
> (Our own code doesn’t use this header value.)

We are analyzing this, we will report back.

-- 
Simone Bordet
----
http://cometd.org
http://webtide.com
Developer advice, training, services and support
from the Jetty & CometD experts.

Back to the top