[jira] [Commented] (TINKERPOP-2809) High severity security vulnerability found in jackson databind

ASF GitHub Bot (Jira) Fri, 07 Oct 2022 13:48:04 -0700


    [ 
https://issues.apache.org/jira/browse/TINKERPOP-2809?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17614253#comment-17614253
 ]


ASF GitHub Bot commented on TINKERPOP-2809:
-------------------------------------------

acoady opened a new pull request, #1823:
URL: https://github.com/apache/tinkerpop/pull/1823

   Bump jackson-databind to 2.14.0-rc1 to resolve JIRA 
https://issues.apache.org/jira/projects/TINKERPOP/issues/TINKERPOP-2809?




> High severity security vulnerability found in jackson databind
> --------------------------------------------------------------
>
>                 Key: TINKERPOP-2809
>                 URL: https://issues.apache.org/jira/browse/TINKERPOP-2809
>             Project: TinkerPop
>          Issue Type: Bug
>          Components: server
>    Affects Versions: 3.6.1
>            Reporter: Aaron Coady
>            Priority: Major
>
> Two High security vulnerabilities in jackson databind. Here are the two 
> links. 
> [https://nvd.nist.gov/vuln/detail/CVE-2022-42003]
> [https://nvd.nist.gov/vuln/detail/CVE-2022-42004]
> Fixes are in 2.14.0



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (TINKERPOP-2809) High severity security vulnerability found in jackson databind

Reply via email to