[
https://issues.apache.org/jira/browse/CASSANDRA-17460?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17509926#comment-17509926
] Brandon Williams commented on CASSANDRA-17460: ---------------------------------------------- ||Branch||CI|| |[4.0|https://github.com/driftx/cassandra/tree/CASSANDRA-17460-4.0]|[j8|https://app.circleci.com/pipelines/github/driftx/cassandra/399/workflows/f8f35793-720c-4233-a652-fb7e10f6e2b2] , [j11|https://app.circleci.com/pipelines/github/driftx/cassandra/399/workflows/499b794a-ad8b-4049-9305-9ff8fc5f2fe3]| |[trunk|https://github.com/driftx/cassandra/tree/CASSANDRA-17460-trunk]|[j8|https://app.circleci.com/pipelines/github/driftx/cassandra/400/workflows/4ed35976-e754-4132-8c1b-709fdb2b2210] , [j11|https://app.circleci.com/pipelines/github/driftx/cassandra/400/workflows/7d5982d0-2a14-4c00-840a-f210d8c9ba06]| > Upgrade jackson-databind for CVE-2020-36518 > ------------------------------------------- > > Key: CASSANDRA-17460 > URL: https://issues.apache.org/jira/browse/CASSANDRA-17460 > Project: Cassandra > Issue Type: Sub-task > Components: Build > Reporter: Brandon Williams > Assignee: Brandon Williams > Priority: Normal > Fix For: 4.0.x, 4.x > > > jackson-databind-2.12.5.jar is vulnerable and should be upgraded. -- This message was sent by Atlassian Jira (v8.20.1#820001) --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
