GWT 2.8.2:
All
All
---
##### Description
Security Vulnerability Detected in gwt-dev.jar & gwt-servlet.jar are reported by Dependency checker tool
Below are the details -
1. Gwt-dev.jar -
1.1 Vulnerable version of jetty library(current version-- 9.2.14, available )
1.2 Vulnerable version of commons-collections(current version - 3.2.1)
1.3 Vulnerable version of org.apache.httpcomponents:httpclient(current version - 4.3.1)
2. Gwt-servlet.jar
1.1 Vulnerable version of Google Protobuf(current version - 2.5.0, available version - 3.4.0)
##### Steps to reproduce
Refer instruction from following web site.
Is community going to update 3rd party library used by GWT to remove these Vulnerability ?