CVE-2022-2191 Information

Description

In Eclipse Jetty versions 10.0.0 thru 10.0.9 and 11.0.0 thru 11.0.9 versions SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths.

Reference

https://github.com/eclipse/jetty.project/security/advisories/GHSA-8mpp-f3f7-xc28