Changelog

This release addresses and resolves CVE-2020-27223
#5979 - Configurable gzip Etag extension
#5977 - Cache-Control header set by a filter is override by the value from DefaultServlet configuration
#5976 - Adding requested Rewrite Rule to force request header values
#5973 - Proxy client TLS authentication example
#5963 - Improve QuotedQualityCSV
#5950 - Deadlock due to logging inside classloaders
#5937 - Unnecessary blocking in ResourceService
#5909 - Cannot disable HTTP OPTIONS Method
#5894 - Jetty 9.4.x 5859 classloader leak queuedthreadpool
#5851 - org.eclipse.jetty.websocket.servlet.WebSocketServlet cleanup
#5787 - Make ManagedSelector report better JMX data
#5492 - Add ability to manage start modules by java feature
#4275 - Path Normalization/Traversal - Context Matching

jetty/jetty.project jetty-9.4.37.v20210219 9.4.37.v20210219 on GitHub