You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@zookeeper.apache.org by eo...@apache.org on 2020/02/24 08:00:48 UTC
[zookeeper] 01/02: ZOOKEEPER-3734: upgrade jackson-databind to
address CVE-2020-8840
This is an automated email from the ASF dual-hosted git repository.
eolivelli pushed a commit to branch release-3.6.0
in repository https://gitbox.apache.org/repos/asf/zookeeper.git
commit 1fba111142c224104a3879af6dd97ac74efda965
Author: Enrico Olivelli <eo...@apache.org>
AuthorDate: Sun Feb 23 08:41:20 2020 -0800
ZOOKEEPER-3734: upgrade jackson-databind to address CVE-2020-8840
Author: Enrico Olivelli <eo...@apache.org>
Reviewers: phunt@apache.org
Closes #1262 from eolivelli/fix/ZOOKEEPER-3734-jackson-again
Change-Id: I21df2c160f8dd9c2542c153e4aa53500b58e8144
---
pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/pom.xml b/pom.xml
index 71e16d8..3d28fa9 100755
--- a/pom.xml
+++ b/pom.xml
@@ -327,7 +327,7 @@
<commons-cli.version>1.2</commons-cli.version>
<netty.version>4.1.45.Final</netty.version>
<jetty.version>9.4.24.v20191120</jetty.version>
- <jackson.version>2.9.10.2</jackson.version>
+ <jackson.version>2.9.10.3</jackson.version>
<json.version>1.1.1</json.version>
<jline.version>2.11</jline.version>
<snappy.version>1.1.7</snappy.version>