Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.eclipse.jetty/jetty-server@9.4.57.v20241219
purl pkg:maven/org.eclipse.jetty/jetty-server@9.4.57.v20241219
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-kx4x-gnk4-yugu **UNSUPPORTED WHEN ASSIGNED** GzipHandler causes part of request body to be seen as request body of a separate request In Eclipse Jetty versions 9.4.0 to 9.4.56 a buffer can be incorrectly released when confronted with a gzip error when inflating a request body. This can result in corrupted and/or inadvertent sharing of data between requests. CVE-2024-13009
GHSA-q4rv-gq96-w7c5

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T23:28:35.516482+00:00 GitLab Importer Fixing VCID-kx4x-gnk4-yugu https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-server/CVE-2024-13009.yml 38.4.0
2026-04-12T00:48:12.095880+00:00 GitLab Importer Fixing VCID-kx4x-gnk4-yugu https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-server/CVE-2024-13009.yml 38.3.0
2026-04-07T04:57:46.442927+00:00 GHSA Importer Fixing VCID-kx4x-gnk4-yugu https://github.com/advisories/GHSA-q4rv-gq96-w7c5 38.1.0
2026-04-03T00:56:11.864557+00:00 GitLab Importer Fixing VCID-kx4x-gnk4-yugu https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-server/CVE-2024-13009.yml 38.1.0
2026-04-02T12:41:23.732624+00:00 GitLab Importer Fixing VCID-kx4x-gnk4-yugu https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-server/CVE-2024-13009.yml 38.0.0
2026-04-01T12:57:00.395680+00:00 GithubOSV Importer Fixing VCID-kx4x-gnk4-yugu https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/05/GHSA-q4rv-gq96-w7c5/GHSA-q4rv-gq96-w7c5.json 38.0.0