This is an automated email from the ASF dual-hosted git repository.

jonathanhurley pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/ambari.git


The following commit(s) were added to refs/heads/trunk by this push:
     new 03d5784  AMBARI-25352 : Upgrade fasterxml jackson dependency due to 
CVE-2019-14379(trunk) (#3067)
03d5784 is described below

commit 03d57843fe4fecac9950e0831ebc9fc45b6ae2b4
Author: Viraj Jasani <virajjasani...@gmail.com>
AuthorDate: Tue Aug 13 21:05:49 2019 +0530

    AMBARI-25352 : Upgrade fasterxml jackson dependency due to 
CVE-2019-14379(trunk) (#3067)
---
 ambari-project/pom.xml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/ambari-project/pom.xml b/ambari-project/pom.xml
index c9d7bac..e59e12e 100644
--- a/ambari-project/pom.xml
+++ b/ambari-project/pom.xml
@@ -39,7 +39,8 @@
     <guice.version>4.1.0</guice.version>
     <spring.version>5.1.3.RELEASE</spring.version>
     <spring.security.version>5.1.2.RELEASE</spring.security.version>
-    <fasterxml.jackson.version>2.9.5</fasterxml.jackson.version>
+    <fasterxml.jackson.version>2.9.9</fasterxml.jackson.version>
+    
<fasterxml.jackson.databind.version>2.9.9.3</fasterxml.jackson.databind.version>
     <postgres.version>42.2.2</postgres.version>
     <testContainers.version>1.10.2</testContainers.version>
     <forkCount>4</forkCount>
@@ -709,7 +710,7 @@
       <dependency>
         <groupId>com.fasterxml.jackson.core</groupId>
         <artifactId>jackson-databind</artifactId>
-        <version>${fasterxml.jackson.version}</version>
+        <version>${fasterxml.jackson.databind.version}</version>
       </dependency>
     <dependency>
       <groupId>org.apache.zookeeper</groupId>

Reply via email to