GHSA-mwhw-6p27-4crc, CVE-2022-2466
maven/io.quarkus/quarkus-core-parent
Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling')
It was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to unpredictable behavior.
All versions starting from 2.10.0 before 2.10.4
Upgrade to version 2.10.4 or above.
2022-09-19
source |