[ARROW-1242] [Java] security - upgrade Jackson to mitigate 3 CVE vulnerabilities - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 0.4.1
Fix Version/s: 0.6.0
Component/s: Java
Labels:
None

External issue URL:
https://github.com/apache/arrow/issues/17103

Description

please consider upgrading jackson to mitigate its various vulnerabilities in 2.7.1:
https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=jackson

see also
https://github.com/FasterXML/jackson-databind/issues/1599

Attachments

Activity

People

Assignee:: Matt Darwin

Reporter:: Matt Darwin

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 20/Jul/17 13:22

Updated:: 11/Jan/23 07:13

Resolved:: 11/Aug/17 21:16