You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@kafka.apache.org by "Shivakumar (Jira)" <ji...@apache.org> on 2022/07/25 06:49:00 UTC

[jira] [Created] (KAFKA-14100) Upgrade vulnerable dependencies Kafka version 3.1.1 July 2022

Shivakumar created KAFKA-14100:
----------------------------------

             Summary: Upgrade vulnerable dependencies Kafka version 3.1.1  July 2022
                 Key: KAFKA-14100
                 URL: https://issues.apache.org/jira/browse/KAFKA-14100
             Project: Kafka
          Issue Type: Bug
    Affects Versions: 2.8.1
            Reporter: Shivakumar
             Fix For: 3.0.1, 3.2.0, 3.1.1


|Packages|Package Version|CVSS|Fix Status|
|com.fasterxml.jackson.core_jackson-databind| 2.10.5.1| 7.5| fixed in 2.14, 2.13.1, 2.12.6|
| | | | |

Our security scan detected the above vulnerabilities

upgrade to correct versions for fixing vulnerabilities



--
This message was sent by Atlassian Jira
(v8.20.10#820010)