[GHSA-qh8g-58pp-2wxh] Eclipse Jetty URI parsing of invalid authority

[jkuhel]

Updates

• Affected products
• CVSS v3

Comments
Updated the affected and patched versions to include the fixes from this commit
jetty/jetty.project@db8bb7a

[github]

Hi there @joakime! A community member has suggested an improvement to your security advisory. If approved, this change will affect the global advisory listed at github.com/advisories. It will not affect the version listed in your project repository.

This change will be reviewed by our Security Curation Team. If you have thoughts or feedback, please share them in a comment here! If this PR has already been closed, you can start a new community contribution for this advisory

[joakime]

Reject, for the same reasons as past attempts to "fix" this Advisory.

See last discussion...

• [GHSA-qh8g-58pp-2wxh] Eclipse Jetty URI parsing of invalid authority #6537

[yhidad31]

👋 Hello @jkuhel and @joakime, based on the history of requests for this change, we'll be keeping the advisory in its current state and will not be accepting the proposed updates at this time. If The Eclipse Foundation provides any additional information in the record for https://www.cve.org/CVERecord?id=CVE-2024-6763 and/or GHSA-qh8g-58pp-2wxh, feel free to submit another PR.