You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@servicecomb.apache.org by GitBox <gi...@apache.org> on 2020/12/21 13:00:17 UTC

[GitHub] [servicecomb-java-chassis] Jack659 opened a new issue #2155: Jackson 2.10.3含CVE漏洞，升级至2.11.0版本，服务启动失败，ServiceComb init failed. 需要配套升级Jackson。

Jack659 opened a new issue #2155:
URL: https://github.com/apache/servicecomb-java-chassis/issues/2155


   项目当前使用Jackson 2.10.3版本，此版本含有漏洞CVE-2020-25649，详见: https://nvd.nist.gov/vuln/detail/CVE-2020-25649


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [servicecomb-java-chassis] liubao68 closed issue #2155: Jackson 2.10.3含CVE漏洞，升级至2.11.0版本，服务启动失败，ServiceComb init failed. 需要配套升级Jackson。

Posted by GitBox <gi...@apache.org>.

liubao68 closed issue #2155:
URL: https://github.com/apache/servicecomb-java-chassis/issues/2155


   


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [servicecomb-java-chassis] Jack659 commented on issue #2155: Jackson 2.10.3含CVE漏洞，升级至2.11.0版本，服务启动失败，ServiceComb init failed. 需要配套升级Jackson。

Posted by GitBox <gi...@apache.org>.

Jack659 commented on issue #2155:
URL: https://github.com/apache/servicecomb-java-chassis/issues/2155#issuecomment-748964757


   java-chassis 2.1.1


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [servicecomb-java-chassis] liubao68 commented on issue #2155: Jackson 2.10.3含CVE漏洞，升级至2.11.0版本，服务启动失败，ServiceComb init failed. 需要配套升级Jackson。

Posted by GitBox <gi...@apache.org>.

liubao68 commented on issue #2155:
URL: https://github.com/apache/servicecomb-java-chassis/issues/2155#issuecomment-785532874


   fixed in 2.1.5


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org