You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@zookeeper.apache.org by "Edwin Hobor (Jira)" <ji...@apache.org> on 2021/01/05 13:49:00 UTC

[jira] [Created] (ZOOKEEPER-4045) CVE-2020-25649 - Upgrade jackson databind to 2.10.5.1

Edwin Hobor created ZOOKEEPER-4045:
--------------------------------------

             Summary: CVE-2020-25649 - Upgrade jackson databind to 2.10.5.1
                 Key: ZOOKEEPER-4045
                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4045
             Project: ZooKeeper
          Issue Type: Bug
    Affects Versions: 3.6.2, 3.6.1
            Reporter: Edwin Hobor


Jackson reported a vulnerability under CVE-2020-25649. Upgrading to 2.10.5.1 will resolve problem. See [https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.10#micro-patches] for more details.
 



--
This message was sent by Atlassian Jira
(v8.3.4#803005)