[TINKERPOP-2223] Update jackson databind to 2.9.9 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 3.3.6, 3.4.1
Fix Version/s: 3.3.8, 3.4.3, 3.5.0
Component/s: io
Labels:
None

Description

https://app.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-174736

Upgrade com.fasterxml.jackson.core:jackson-databind to version 2.9.9 or higher.

Security vulnerability is specific to having mysql jars on the classpath. Does not affect us directly. Low priority, let's put it on the roadmap.

Attachments

Activity

People

Assignee:: Stephen Mallette

Reporter:: Robert Dale

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 21/May/19 12:38

Updated:: 12/Jun/19 10:46

Resolved:: 12/Jun/19 10:46