diff options
author | Edwin Hobor <edwin.hobor@microfocus.com> | 2021-01-06 19:50:08 +0100 |
---|---|---|
committer | Norbert Kalmar <nkalmar@apache.org> | 2021-01-06 19:50:08 +0100 |
commit | 676d10b2fad97c69e4083619cb1db223ed1896a4 (patch) | |
tree | 469ac8916db2453a2b07bc5bac8d5e178bb25ff4 /pom.xml | |
parent | 0a6b055356128483ad4166ca8cd5eff26f66fefb (diff) | |
download | zookeeper-676d10b2fad97c69e4083619cb1db223ed1896a4.tar.gz |
ZOOKEEPER-4045: CVE-2020-25649 - Upgrade jackson databind to 2.10.5.1
Jackson reported a vulnerability under CVE-2020-25649. Upgrading to 2.10.5.1 will resolve the problem. See https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.10#micro-patches for more details.
Author: Edwin Hobor <edwin.hobor@microfocus.com>
Reviewers: Mate Szalay-Beko <symat@apache.org>, Norbert Kalmar <nkalmar@apache.org>
Closes #1572 from edwin092/ZOOKEEPER-4045
Diffstat (limited to 'pom.xml')
-rwxr-xr-x | pom.xml | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -439,7 +439,7 @@ <commons-cli.version>1.4</commons-cli.version> <netty.version>4.1.50.Final</netty.version> <jetty.version>9.4.35.v20201120</jetty.version> - <jackson.version>2.10.5</jackson.version> + <jackson.version>2.10.5.1</jackson.version> <jline.version>2.14.6</jline.version> <snappy.version>1.1.7.7</snappy.version> <kerby.version>2.0.0</kerby.version> |