[
https://issues.apache.org/jira/browse/IMPALA-14151?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18021030#comment-18021030
]
ASF subversion and git services commented on IMPALA-14151:
----------------------------------------------------------
Commit 0513c071b4714ca9c8becee476a272fb3a8e983f in impala's branch
refs/heads/master from pranav.lodha
[ https://gitbox.apache.org/repos/asf?p=impala.git;h=0513c071b ]
IMPALA-14151: Update jackson.core
Bump IMPALA_JACKSON_VERSION from 2.15.3 to 2.18.1
as a part of maintenance upgrade to pick up
fixes and improvements in the 2.18.x line.
Change-Id: I7b63d8d58011c0dd1c00c72da386ec1b0fbc4d82
Reviewed-on: http://gerrit.cloudera.org:8080/23102
Reviewed-by: Impala Public Jenkins <[email protected]>
Tested-by: Michael Smith <[email protected]>
> Update jackson.core CVE
> -----------------------
>
> Key: IMPALA-14151
> URL: https://issues.apache.org/jira/browse/IMPALA-14151
> Project: IMPALA
> Issue Type: Improvement
> Reporter: Pranav Yogi Lodha
> Priority: Major
> Fix For: Impala 5.0.0
>
>
> Update jackson.core from 2.10.2 to 2.18.1 due to the following CVEs:
> CVE-2020-36518, CVE-2020-36517, CVE-2021-20190 CVE-2020-15250 CVE-2022-42003
> CVE-2023-35116.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
