[
https://issues.apache.org/jira/browse/HADOOP-18178?focusedWorklogId=789438&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-789438
]
ASF GitHub Bot logged work on HADOOP-18178:
-------------------------------------------
Author: ASF GitHub Bot
Created on: 11/Jul/22 10:00
Start Date: 11/Jul/22 10:00
Worklog Time Spent: 10m
Work Description: pjfanning commented on PR #4544:
URL: https://github.com/apache/hadoop/pull/4544#issuecomment-1180200209
There have been public releases of Hadoop with the jackson upgrades - eg
https://mvnrepository.com/artifact/org.apache.hadoop/hadoop-common/3.3.3
Is there anything that can be done in the downstream projects to try to fix
their builds to use the up to date and CVE free Jackson version used in Hadoop
v3.3.3?
Issue Time Tracking
-------------------
Worklog Id: (was: 789438)
Time Spent: 3h 20m (was: 3h 10m)
> Upgrade jackson to 2.13.2 and jackson-databind to 2.13.2.2
> ----------------------------------------------------------
>
> Key: HADOOP-18178
> URL: https://issues.apache.org/jira/browse/HADOOP-18178
> Project: Hadoop Common
> Issue Type: Bug
> Reporter: PJ Fanning
> Assignee: PJ Fanning
> Priority: Major
> Labels: pull-request-available
> Fix For: 3.4.0, 3.3.3
>
> Time Spent: 3h 20m
> Remaining Estimate: 0h
>
> https://github.com/FasterXML/jackson-databind/issues/2816
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
