[
https://issues.apache.org/jira/browse/HADOOP-16198?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Bharat Viswanadham updated HADOOP-16198:
----------------------------------------
Description:
Jackson-databind is affected by below CVEs and are getting reported by
Customers.
CVE-2018-14719
CVE-2018-14720
CVE-2018-14721
CVE-2018-1000873
CVE-2018-7489
CVE-2018-19362
CVE-2017-15095
CVE-2018-19361
CVE-2017-7525
CVE-2018-19360
CVE-2017-17485
CVE-2018-5968
We need to upgrade this to version 2.9.8.
was:
Jackson-databind is affected by below CVEs and are getting reported by
Customers.
CVE-2018-14719
CVE-2018-14720
CVE-2018-14721
CVE-2018-1000873
CVE-2018-7489
CVE-2018-19362
CVE-2017-15095
CVE-2018-19361
CVE-2017-7525
CVE-2018-19360
CVE-2017-17485
CVE-2018-5968
> Upgrade Jackson-databind version to 2.9.8
> -----------------------------------------
>
> Key: HADOOP-16198
> URL: https://issues.apache.org/jira/browse/HADOOP-16198
> Project: Hadoop Common
> Issue Type: Bug
> Reporter: Bharat Viswanadham
> Assignee: Bharat Viswanadham
> Priority: Major
>
> Jackson-databind is affected by below CVEs and are getting reported by
> Customers.
> CVE-2018-14719
> CVE-2018-14720
> CVE-2018-14721
> CVE-2018-1000873
> CVE-2018-7489
> CVE-2018-19362
> CVE-2017-15095
> CVE-2018-19361
> CVE-2017-7525
> CVE-2018-19360
> CVE-2017-17485
> CVE-2018-5968
>
> We need to upgrade this to version 2.9.8.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
