You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@ambari.apache.org by jo...@apache.org on 2019/08/13 15:35:54 UTC
[ambari] branch trunk updated: AMBARI-25352 : Upgrade fasterxml
jackson dependency due to CVE-2019-14379(trunk) (#3067)
This is an automated email from the ASF dual-hosted git repository.
jonathanhurley pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/ambari.git
The following commit(s) were added to refs/heads/trunk by this push:
new 03d5784 AMBARI-25352 : Upgrade fasterxml jackson dependency due to CVE-2019-14379(trunk) (#3067)
03d5784 is described below
commit 03d57843fe4fecac9950e0831ebc9fc45b6ae2b4
Author: Viraj Jasani <vi...@gmail.com>
AuthorDate: Tue Aug 13 21:05:49 2019 +0530
AMBARI-25352 : Upgrade fasterxml jackson dependency due to CVE-2019-14379(trunk) (#3067)
---
ambari-project/pom.xml | 5 +++--
1 file changed, 3 insertions(+), 2 deletions(-)
diff --git a/ambari-project/pom.xml b/ambari-project/pom.xml
index c9d7bac..e59e12e 100644
--- a/ambari-project/pom.xml
+++ b/ambari-project/pom.xml
@@ -39,7 +39,8 @@
<guice.version>4.1.0</guice.version>
<spring.version>5.1.3.RELEASE</spring.version>
<spring.security.version>5.1.2.RELEASE</spring.security.version>
- <fasterxml.jackson.version>2.9.5</fasterxml.jackson.version>
+ <fasterxml.jackson.version>2.9.9</fasterxml.jackson.version>
+ <fasterxml.jackson.databind.version>2.9.9.3</fasterxml.jackson.databind.version>
<postgres.version>42.2.2</postgres.version>
<testContainers.version>1.10.2</testContainers.version>
<forkCount>4</forkCount>
@@ -709,7 +710,7 @@
<dependency>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-databind</artifactId>
- <version>${fasterxml.jackson.version}</version>
+ <version>${fasterxml.jackson.databind.version}</version>
</dependency>
<dependency>
<groupId>org.apache.zookeeper</groupId>