You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@zookeeper.apache.org by "Edwin Hobor (Jira)" <ji...@apache.org> on 2022/03/29 12:44:00 UTC
[jira] [Created] (ZOOKEEPER-4505) CVE-2020-36518 - Upgrade jackson databind to 2.12.6.1 or 2.13.2.1
Edwin Hobor created ZOOKEEPER-4505:
--------------------------------------
Summary: CVE-2020-36518 - Upgrade jackson databind to 2.12.6.1 or 2.13.2.1
Key: ZOOKEEPER-4505
URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4505
Project: ZooKeeper
Issue Type: Bug
Reporter: Edwin Hobor
*CVE-2020-36518* vulnerability affects jackson-databind in Zookeeper (see [https://github.com/advisories/GHSA-57j2-w4cx-62h2]).
Upgrading to jackson-databind versionĀ *2.12.6.1* or *2.13.2.1* should address this issue.
--
This message was sent by Atlassian Jira
(v8.20.1#820001)