[jira] [Closed] (FLINK-26961) Update multiple Jackson dependencies to v2.13.2 and v2.13.2.1

Martijn Visser (Jira) Tue, 05 Apr 2022 00:04:09 -0700


     [ 
https://issues.apache.org/jira/browse/FLINK-26961?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Martijn Visser closed FLINK-26961.
----------------------------------
    Fix Version/s: 1.15.0
                   1.16.0
       Resolution: Fixed

> Update multiple Jackson dependencies to v2.13.2 and v2.13.2.1
> -------------------------------------------------------------
>
>                 Key: FLINK-26961
>                 URL: https://issues.apache.org/jira/browse/FLINK-26961
>             Project: Flink
>          Issue Type: Technical Debt
>          Components: Connectors / Common, Formats (JSON, Avro, Parquet, ORC, 
> SequenceFile), Table SQL / Planner
>            Reporter: Sergey Nuyanzin
>            Assignee: Sergey Nuyanzin
>            Priority: Major
>              Labels: pull-request-available
>             Fix For: 1.15.0, 1.16.0
>
>
> There is a High 
> [CVE-2020-36518|https://nvd.nist.gov/vuln/detail/CVE-2020-36518], 
> https://github.com/advisories/GHSA-57j2-w4cx-62h2
> which was fixed with 2.13.2.1



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Closed] (FLINK-26961) Update multiple Jackson dependencies to v2.13.2 and v2.13.2.1

Reply via email to