[jira] [Updated] (SLING-12229) Update jackson and jsoup dependencies

Andrei Dulvac (Jira) Mon, 15 Jan 2024 01:01:01 -0800


     [ 
https://issues.apache.org/jira/browse/SLING-12229?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Andrei Dulvac updated SLING-12229:
----------------------------------
    Summary: Update jackson and jsoup dependencies  (was: Update jackson-core 
dependencies)

> Update jackson and jsoup dependencies
> -------------------------------------
>
>                 Key: SLING-12229
>                 URL: https://issues.apache.org/jira/browse/SLING-12229
>             Project: Sling
>          Issue Type: Bug
>          Components: Apache Sling Testing Clients
>    Affects Versions: Apache Sling Testing Clients 3.0.20
>            Reporter: Andrei Dulvac
>            Assignee: Andrei Dulvac
>            Priority: Major
>             Fix For: Apache Sling Testing Clients 3.0.22
>
>
> jackson-core - 2.13.0, jackson-databind-2.13.2.1, jsoup-1.14.3 need to be 
> updated because they cause:
> CVE-2022-42003
> CVE-2022-42004
> CVE-2022-36033



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (SLING-12229) Update jackson and jsoup dependencies

Reply via email to