[JM-1242] Security issue fixed by upgrading Jetty.

git-svn-id: http://svn.igniterealtime.org/svn/repos/openfire/branches/openfire_3_4_4@9761 b35dd754-fafc-0310-a699-88a17e54d16e

[JM-1242] Security issue fixed by upgrading Jetty.
git-svn-id: http://svn.igniterealtime.org/svn/repos/openfire/branches/openfire_3_4_4@9761 b35dd754-fafc-0310-a699-88a17e54d16e
b3f50a2d · Daniel Henninger · dhenninger · 93fb6bef · b3f50a2d · b3f50a2d
Commit b3f50a2d authored Jan 14, 2008 by Daniel Henninger Committed by dhenninger Jan 14, 2008
5 changed files
--- a/build/lib/dist/servlet.jar
+++ b/build/lib/dist/servlet.jar
--- a/build/lib/merge/jetty-util.jar
+++ b/build/lib/merge/jetty-util.jar
--- a/build/lib/merge/jetty.jar
+++ b/build/lib/merge/jetty.jar
--- a/build/lib/versions.txt
+++ b/build/lib/versions.txt
@@ -15,8 +15,8 @@ dbutil.jar                          | Jive Code, no release version.
 hamcrest.jar                        | 1.0 (JMock 2.1.0)
 hamcrest-api.jar                    | 1.0 (JMock 2.1.0)
 hsqldb.jar                          | 1.8.0.5
-jetty.jar                           | Jetty 6.1.0
-jetty-util.jar                      | Jetty 6.1.0
+jetty.jar                           | Jetty 6.1.7
+jetty-util.jar                      | Jetty 6.1.7
 jasper-compiler.jar                 | Jetty 6.1.0 (5.5.15)
 jasper-runtime.jar                  | Jetty 6.1.0 (5.5.15)
 jaxen.jar                           | 1.1 beta 4 (from DOM4J 1.6.1)
@@ -41,7 +41,7 @@ pack200task.jar                     | August 5, 2004
 postgres.jar                        | 8.2-506.jdbc3
 rome.jar                            | 0.9
 rome-fetcher.jar                    | 0.9
-servlet.jar                         | Jetty 6.1.0 (2.5)
+servlet.jar                         | Jetty 6.1.7 (2.5)
 shaj.jar                            | 0.5
 sitemesh.jar                        | 2.2.1
 standard.jar                        | Jakarta standard taglib 1.1.2

--- a/documentation/dist/changelog.html
+++ b/documentation/dist/changelog.html
@@ -171,6 +171,7 @@ hr {
 <li>[<a href='http://www.igniterealtime.org/issues/browse/JM-1232'>JM-1232</a>] - LDAP vCard database storage fixed to work properly with Active Directory and others.  !!NOTE!!  API Changes for providers were required.  See important notes below.</li>
 <li>[<a href='http://www.igniterealtime.org/issues/browse/JM-1233'>JM-1233</a>] - RPM uninstall no longer fails if Openfire not currently running.</li>
 <li>[<a href='http://www.igniterealtime.org/issues/browse/JM-1240'>JM-1240</a>] - Can now delete an avatar when using LDAP.</li>
+<li>[<a href='http://www.igniterealtime.org/issues/browse/JM-1242'>JM-1242</a>] - Jetty upgraded to fix announced security issue (http://www.kb.cert.org/vuls/id/553235)</li>
 </ul>

 <h3>Important Notes</h3>