ZOOKEEPER-4505: CVE-2020-36518 - Upgrade jackson databind to 2.13.2.1

CVE-2020-36518 vulnerability affects jackson-databind in Zookeeper (see https://github.com/advisories/GHSA-57j2-w4cx-62h2). Upgrading to jackson-databind version 2.13.2.1 should address this issue. Author: Edwin Hobor <edwinhobor@gmail.com> Reviewers: maoling <maoling@apache.org>,Enrico Olivelli <eolivelli@apache.org>, Mohammad Arshad <arshad@apache.org> Closes #1842 from edwin092/edwin/ZOOKEEPER-4505
author: Edwin Hobor <edwinhobor@gmail.com> 2022-03-31 00:27:23 +0530
committer: Mohammad Arshad <arshad@apache.org> 2022-03-31 00:27:23 +0530
commit: 78bbb123cfcbdd8da9d118f08b49d1d00c43f53d (patch)
tree: 172596926ec88efea40f593241a08768b3ccdcca /pom.xml
parent: 91e0520133b82acb87ab60962fce5eae992d87e8 (diff)
download: zookeeper-78bbb123cfcbdd8da9d118f08b49d1d00c43f53d.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/pom.xml b/pom.xml
index f14f317d1..5ff25149d 100755
--- a/pom.xml
+++ b/pom.xml
@@ -470,7 +470,7 @@
     <netty.version>4.1.73.Final</netty.version>
     <netty.tcnative.version>2.0.48.Final</netty.tcnative.version>
     <jetty.version>9.4.43.v20210629</jetty.version>
-    <jackson.version>2.13.1</jackson.version>
+    <jackson.version>2.13.2.1</jackson.version>
     <jline.version>2.14.6</jline.version>
     <snappy.version>1.1.7.7</snappy.version>
     <kerby.version>2.0.0</kerby.version>
author	Edwin Hobor <edwinhobor@gmail.com>	2022-03-31 00:27:23 +0530
committer	Mohammad Arshad <arshad@apache.org>	2022-03-31 00:27:23 +0530
commit	78bbb123cfcbdd8da9d118f08b49d1d00c43f53d (patch)
tree	172596926ec88efea40f593241a08768b3ccdcca /pom.xml
parent	91e0520133b82acb87ab60962fce5eae992d87e8 (diff)
download	zookeeper-78bbb123cfcbdd8da9d118f08b49d1d00c43f53d.tar.gz