PJ Fanning created XMLBEANS-630: ----------------------------------- Summary: uptake jackson-databind 2.12.7.1 due to CVE fixes Key: XMLBEANS-630 URL: https://issues.apache.org/jira/browse/XMLBEANS-630 Project: XMLBeans Issue Type: Improvement Reporter: PJ Fanning
* [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42003] * [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42004] * both fixes have been backported (the CVEs themselves need to be updated to reflect this) * https://github.com/FasterXML/jackson-databind/pull/3622 -- This message was sent by Atlassian Jira (v8.20.10#820010) --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@poi.apache.org For additional commands, e-mail: dev-h...@poi.apache.org