You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@zookeeper.apache.org by "Mate Szalay-Beko (Jira)" <ji...@apache.org> on 2020/04/30 10:18:00 UTC
[jira] [Updated] (ZOOKEEPER-3751) upgrade jackson-databind to 2.10
from 2.9
[ https://issues.apache.org/jira/browse/ZOOKEEPER-3751?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Mate Szalay-Beko updated ZOOKEEPER-3751:
----------------------------------------
Fix Version/s: 3.5.8
> upgrade jackson-databind to 2.10 from 2.9
> -----------------------------------------
>
> Key: ZOOKEEPER-3751
> URL: https://issues.apache.org/jira/browse/ZOOKEEPER-3751
> Project: ZooKeeper
> Issue Type: Task
> Components: security
> Affects Versions: 3.6.0, 3.5.7, 3.7.0
> Reporter: Patrick D. Hunt
> Assignee: Patrick D. Hunt
> Priority: Critical
> Labels: pull-request-available
> Fix For: 3.7.0, 3.6.1, 3.5.8
>
> Time Spent: 1.5h
> Remaining Estimate: 0h
>
> Upgrade jackson-databind to 2.10 form 2.9. 2.10 is the current latest version. Also we've been seeing lots of vulnerability reports with 2.9 - perhaps this will help.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)