In Eclipse Jetty versions 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| org.eclipse.jetty:jetty-server(Maven) | 10.0.0 | 10.0.10 | N/A |
| org.eclipse.jetty:jetty-server(Maven) | 11.0.0 | 11.0.10 | N/A |
CVSS Metrics
