Jetty Security Reports

Date	ID	Severity	Fixed Version	Comment
22/11/2006	CVE-2006-6969	high	6.1.0pre3, 6.0.2, 5.1.12, 4.2.27	Session ID predictability
1/6/2006	CVE-2006-2759	medium	6.0.0Beta17	JSP source visibility
5/1/2006		medium	5.1.10	Fixed // security constraint bypass on windows
18/11/2005	CVE-2006-2758	medium	5.1.6, 6.0.0Beta4	JSP source visibility
4/2/2004	JSSE 1.0.3_01	medium	4.2.7	Upgraded JSSE to obtain downstream security fix
22/9/2002		high	4.1.0	Fixed CGI servlet remove exploit
12/3/2002		medium	4.0.RC2, 3.1.7	Fixed // security constraint bypass
21/10/2001		medium	3.1.3	Fixed trailing null security constraint bypass