Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-8061

Update Jackson Databind Version

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Duplicate
    • 1.11.0, 1.12.0, 1.11.1, 1.11.2, 1.11.3, 1.11.4, 1.13.0, 1.12.1
    • 1.14.0
    • None
    • Patch

    Description

      Upgrade com.fasterxml.jackson.core:jackson-databind in NiFi's maven poms to version 2.9.10.6. This resolves CVE 2020-25649 http://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-25649 with this issue fixed https://github.com/FasterXML/jackson-databind/issues/2826 .

      Attachments

        Issue Links

          is fixed by

          Improvement - An improvement or enhancement to an existing feature or task. NIFI-8723 Upgrade Jackson to 2.12.3

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              dborncamp David Borncamp
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - 4h
                  4h
                  Remaining:
                  Remaining Estimate - 4h
                  4h
                  Logged:
                  Time Spent - Not Specified
                  Not Specified