[FLINK-26961] Update multiple Jackson dependencies to v2.13.2 and v2.13.2.1 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Technical Debt
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.14.5, 1.15.0, elasticsearch-3.0.0
Component/s: Connectors / Common, Formats (JSON, Avro, Parquet, ORC, SequenceFile), Table SQL / Planner
Labels:
- pull-request-available

Description

There is a High CVE-2020-36518, https://github.com/advisories/GHSA-57j2-w4cx-62h2
which was fixed with 2.13.2.1

Attachments

Issue Links

links to

GitHub Pull Request #19303

GitHub Pull Request #19339

GitHub Pull Request #19340

Activity

People

Assignee:: Sergey Nuyanzin

Reporter:: Sergey Nuyanzin

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 31/Mar/22 13:40

Updated:: 13/Sep/22 09:01

Resolved:: 05/Apr/22 07:03