Ahmed Hussein created HADOOP-17094: -------------------------------------- Summary: vulnerabilities reported in jackson and jackson-databind in branch-2.10 Key: HADOOP-17094 URL: https://issues.apache.org/jira/browse/HADOOP-17094 Project: Hadoop Common Issue Type: Bug Affects Versions: 2.10.0, 2.10.1 Reporter: Ahmed Hussein Assignee: Ahmed Hussein
There are known vulnerabilities in the com.fasterxml.jackson.core:jackson-databind package [,2.9.10.5). [List of vulnerabilities|https://snyk.io/vuln/maven:com.fasterxml.jackson.core%3Ajackson-databind]. Upgrading jackson and jackson-databind to 2.10 should get rid of those vulnerabilities. -- This message was sent by Atlassian Jira (v8.3.4#803005) --------------------------------------------------------------------- To unsubscribe, e-mail: common-dev-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-dev-h...@hadoop.apache.org