You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@zookeeper.apache.org by ma...@apache.org on 2022/01/24 03:52:09 UTC
[zookeeper] branch branch-3.6 updated: ZOOKEEPER-4429: Update jackson-databind to 2.13.1
This is an automated email from the ASF dual-hosted git repository.
maoling pushed a commit to branch branch-3.6
in repository https://gitbox.apache.org/repos/asf/zookeeper.git
The following commit(s) were added to refs/heads/branch-3.6 by this push:
new 353bd55 ZOOKEEPER-4429: Update jackson-databind to 2.13.1
353bd55 is described below
commit 353bd5554a263b41b37863ed7c74b353aa52049f
Author: Frederiko Costa <fr...@gmail.com>
AuthorDate: Mon Jan 24 11:51:57 2022 +0800
ZOOKEEPER-4429: Update jackson-databind to 2.13.1
This PR updates jackson-databind to 2.13.1 to address a raised vulnerability that could possible DoS attack certain versions of Jackson. Please refer to GH issue #3328 for further info. On top of that, it also fixes now deprecated PropertyNamingStrategy class initialization issue #2715.
Author: Frederiko Costa <fr...@gmail.com>
Reviewers: Enrico Olivelli <eo...@apache.org>, Shoothzj <sh...@gmail.com>, maoling <ma...@apache.org>
Closes #1787 from frederiko/ZOOKEEPER-4429_zk_3.6_jackson_upgrade
---
pom.xml | 2 +-
.../main/java/org/apache/zookeeper/server/admin/JsonOutputter.java | 4 ++--
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/pom.xml b/pom.xml
index 3488c2f..5d6577b 100755
--- a/pom.xml
+++ b/pom.xml
@@ -357,7 +357,7 @@
<commons-cli.version>1.2</commons-cli.version>
<netty.version>4.1.70.Final</netty.version>
<jetty.version>9.4.43.v20210629</jetty.version>
- <jackson.version>2.10.5.1</jackson.version>
+ <jackson.version>2.13.1</jackson.version>
<json.version>1.1.1</json.version>
<jline.version>2.14.6</jline.version>
<snappy.version>1.1.7</snappy.version>
diff --git a/zookeeper-server/src/main/java/org/apache/zookeeper/server/admin/JsonOutputter.java b/zookeeper-server/src/main/java/org/apache/zookeeper/server/admin/JsonOutputter.java
index 0679cfa..7d94574 100644
--- a/zookeeper-server/src/main/java/org/apache/zookeeper/server/admin/JsonOutputter.java
+++ b/zookeeper-server/src/main/java/org/apache/zookeeper/server/admin/JsonOutputter.java
@@ -21,7 +21,7 @@ package org.apache.zookeeper.server.admin;
import com.fasterxml.jackson.core.JsonGenerationException;
import com.fasterxml.jackson.databind.JsonMappingException;
import com.fasterxml.jackson.databind.ObjectMapper;
-import com.fasterxml.jackson.databind.PropertyNamingStrategy;
+import com.fasterxml.jackson.databind.PropertyNamingStrategies;
import com.fasterxml.jackson.databind.SerializationFeature;
import java.io.IOException;
import java.io.PrintWriter;
@@ -40,7 +40,7 @@ public class JsonOutputter implements CommandOutputter {
mapper = new ObjectMapper();
mapper.configure(SerializationFeature.WRITE_ENUMS_USING_TO_STRING, true);
mapper.configure(SerializationFeature.INDENT_OUTPUT, true);
- mapper.setPropertyNamingStrategy(PropertyNamingStrategy.SNAKE_CASE);
+ mapper.setPropertyNamingStrategy(PropertyNamingStrategies.SNAKE_CASE);
}
@Override