Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-15994

Upgrade Jackson2 to 2.9.8

Log workAgile BoardRank to TopRank to BottomAttach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskConvert to sub-taskMoveLinkCloneLabelsUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 3.3.0, 3.2.1
    • Component/s: security
    • Labels:
      None
    • Hadoop Flags:
      Reviewed

      Description

      Now Jackson 2.9.5 is used and it is vulnerable (CVE-2018-11307). Let's upgrade to the latest version.

        Attachments

        1. 460.patch
          1 kB
          Akira Ajisaka
        2. HADOOP-15994-003.patch
          0.6 kB
          lqjacklee
        3. HADOOP-15994-002.patch
          0.6 kB
          lqjacklee
        4. HADOOP-15994-001.patch
          0.6 kB
          lqjacklee

        Issue Links

          Activity

          $i18n.getText('security.level.explanation', $currentSelection) Viewable by All Users
          Cancel

            People

              Dates

              • Created:
                Updated:
                Resolved:

                Issue deployment