You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@james.apache.org by bt...@apache.org on 2022/11/11 15:58:21 UTC

[james-project] 02/03: [UPGRADE] com.fasterxml.jackson.core:jackson-databind 2.13.3 -> 2.13.4.2

This is an automated email from the ASF dual-hosted git repository.

btellier pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/james-project.git

commit ad32445a6fcbd10cd6c78d1d744ba9df1792b8de
Author: Tung Van TRAN <vt...@linagora.com>
AuthorDate: Wed Nov 9 14:52:36 2022 +0700

    [UPGRADE] com.fasterxml.jackson.core:jackson-databind 2.13.3 -> 2.13.4.2
    
    Fixing:
    CVE-2022-42004
    CVE-2022-42003
---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index 094257bbee..3947601c50 100644
--- a/pom.xml
+++ b/pom.xml
@@ -624,7 +624,7 @@
 
         <pax-logging-api.version>1.6.4</pax-logging-api.version>
         <jackson.version>2.13.3</jackson.version>
-        <jackson.databind.version>2.13.3</jackson.databind.version>
+        <jackson.databind.version>2.13.4.2</jackson.databind.version>
         <feign.version>11.10</feign.version>
         <feign-form.version>3.8.0</feign-form.version>
         <jjwt.version>0.11.5</jjwt.version>


---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@james.apache.org
For additional commands, e-mail: notifications-help@james.apache.org