Description
The current code uses com.fasterxml.jackson.core:jackson-databind:jar:2.9.9.3 and it will cause a security vulnerabilities. We could get some security info fromĀ https://www.tenable.com/cve/CVE-2019-16335
This reference remind to upgrate the version of `jackson-databind` to 2.9.10 or later.
Attachments
Issue Links
- is related to
-
SPARK-29483 Bump Jackson to 2.10.0
- Resolved
- links to