This is an automated email from the ASF dual-hosted git repository.

mgaido pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/incubator-livy.git


The following commit(s) were added to refs/heads/master by this push:
     new 22a8ad1  [LIVY-598] Upgrade jackson to 2.9.9
22a8ad1 is described below

commit 22a8ad133bccb9e7e4a8e99556507362904b5416
Author: Arun Mahadevan <ar...@apache.org>
AuthorDate: Sun Jul 21 15:59:40 2019 +0200

    [LIVY-598] Upgrade jackson to 2.9.9
    
    ## What changes were proposed in this pull request?
    
    Upgrade the jackson dependency to 2.9.9 which fixes CVE-2019-12086.  Spark 
has also recently upgraded to jackson version 2.9.9.
    
    ## How was this patch tested?
    
    Existing unit tests
    
    Please review https://livy.incubator.apache.org/community/ before opening a 
pull request.
    
    Author: Arun Mahadevan <ar...@apache.org>
    
    Closes #174 from arunmahadevan/LIVY-598.
---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index 6bfdcc6..cfe9f42 100644
--- a/pom.xml
+++ b/pom.xml
@@ -87,7 +87,7 @@
     <guava.version>15.0</guava.version>
     <httpclient.version>4.5.3</httpclient.version>
     <httpcore.version>4.4.4</httpcore.version>
-    <jackson.version>2.9.8</jackson.version>
+    <jackson.version>2.9.9</jackson.version>
     <javax.servlet-api.version>3.1.0</javax.servlet-api.version>
     <jetty.version>9.3.24.v20180605</jetty.version>
     <json4s.version>3.2.11</json4s.version>

Reply via email to