[jira] [Commented] (HADOOP-16451) Update jackson-databind to 2.9.9.1

Siyao Meng (JIRA) Tue, 23 Jul 2019 19:24:03 -0700


    [ 
https://issues.apache.org/jira/browse/HADOOP-16451?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16891532#comment-16891532
 ]


Siyao Meng commented on HADOOP-16451:
-------------------------------------

[~aajisaka] Do you mean removing the line 
hadoop-yarn-project/hadoop-yarn/hadoop-yarn-applications/hadoop-yarn-applications-catalog/hadoop-yarn-applications-catalog-webapp/pom.xml:202
 directly?

> Update jackson-databind to 2.9.9.1
> ----------------------------------
>
>                 Key: HADOOP-16451
>                 URL: https://issues.apache.org/jira/browse/HADOOP-16451
>             Project: Hadoop Common
>          Issue Type: Bug
>            Reporter: Wei-Chiu Chuang
>            Assignee: Siyao Meng
>            Priority: Major
>         Attachments: HADOOP-16451.001.patch
>
>
> https://nvd.nist.gov/vuln/detail/CVE-2019-12814
> CVE-2019-12814 flags 2.9.9 as vulnerable. A new version 2.9.9.1 is available.



--
This message was sent by Atlassian JIRA
(v7.6.14#76016)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Commented] (HADOOP-16451) Update jackson-databind to 2.9.9.1

Reply via email to