jetty-minimal/jetty-websocket.changes

-------------------------------------------------------------------
Fri May 14 16:57:01 UTC 2021 - Ferdinand Thiessen <rpm@fthiessen.de>

- Update to version 9.4.40.v20210413
  * Fix: CVE-2021-28165 - jetty server high CPU when client send
    data length > 17408
  * Fix: CVE-2021-28164 - Normalize ambiguous URIs
  * Fix: CVE-2021-28163 - Exclude webapps directory from deployment
    scan
  * Improve handling of unconsumed content
  * Jetty start.jar always reports jetty.tag.version as master
  * HttpConnection.getBytesIn() incorrect for requests with chunked
    content
  * SslConnection compacting

-------------------------------------------------------------------
Fri Mar 12 11:11:07 UTC 2021 - Fridrich Strba <fstrba@suse.com>

- Upgrade to upstream version 9.4.38.v20210224
  * Fixes bsc#1182898, CVE-2020-27223

-------------------------------------------------------------------
Mon Dec  7 18:12:50 UTC 2020 - Fridrich Strba <fstrba@suse.com>

- Upgrade to upstream version 9.4.35.v20201120
  * Fixes bsc#1179727, CVE-2020-27218

-------------------------------------------------------------------
Thu Nov 19 13:05:09 UTC 2020 - Fridrich Strba <fstrba@suse.com>

- Upgrade to upstream version 9.4.30.v20200611

-------------------------------------------------------------------
Thu Apr  2 09:25:19 UTC 2020 - Fridrich Strba <fstrba@suse.com>

- Upgrade to upstream version 9.4.27.v20200227

-------------------------------------------------------------------
Thu Nov 28 09:02:29 UTC 2019 - Fridrich Strba <fstrba@suse.com>

- Removed patch:
  * jetty-annotations-asm6.patch
    + not needed when building against ASM7

-------------------------------------------------------------------
Fri Nov  8 10:42:50 UTC 2019 - Fridrich Strba <fstrba@suse.com>

- Initial packaging of the websocket submodules of jetty
  9.4.22.v20191022