Comment From: wilkinsona
2.2.27 does not work on Java 8: https://issues.redhat.com/browse/UNDERTOW-2324.
Comment From: grgrzybek
I know, I know that I should not hurry anyone up or mention about dependency upgrades because you have great auto mechanism for such changes. But I have to - is it possible to include an update of Undertow to version 2.2.28.Final? It not only fixes CVE-2023-44487 HTTP/2 "rapid reset" CVE, but also fixes this particular JDK8 compatibility problem...
Thanks in advance - this is the last time I violate your policy, I promise ;)