You are viewing a plain text version of this content. The canonical link for it is here.

Posted to oak-issues@jackrabbit.apache.org by "Julian Reschke (Jira)" <ji...@apache.org> on 2023/01/06 20:18:00 UTC

[jira] [Comment Edited] (OAK-9479) oak-search-elastic: upgrade jackson-databind to 2.10.5.1

    [ https://issues.apache.org/jira/browse/OAK-9479?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17655522#comment-17655522 ] 

Julian Reschke edited comment on OAK-9479 at 1/6/23 8:17 PM:
-------------------------------------------------------------

trunk: (1.44.0) [274f92402a|https://github.com/apache/jackrabbit-oak/commit/274f92402a12978040939965e92ee4519f2ce1c3]
1.22: [49e17c270f|https://github.com/apache/jackrabbit-oak/commit/49e17c270ff0ae26121ccbdf2aa7f01a6d989f7f]



was (Author: reschke):
trunk: (1.44.0) [274f92402a|https://github.com/apache/jackrabbit-oak/commit/274f92402a12978040939965e92ee4519f2ce1c3]

> oak-search-elastic: upgrade jackson-databind to 2.10.5.1
> --------------------------------------------------------
>
>                 Key: OAK-9479
>                 URL: https://issues.apache.org/jira/browse/OAK-9479
>             Project: Jackrabbit Oak
>          Issue Type: Task
>          Components: elastic-search, search
>            Reporter: Fabrizio Fortino
>            Assignee: Fabrizio Fortino
>            Priority: Major
>             Fix For: 1.42.0, 1.22.14
>
>
> The current version (2.10.3) is affected by this vulnerability https://nvd.nist.gov/vuln/detail/CVE-2020-25649



--
This message was sent by Atlassian Jira
(v8.20.10#820010)